Bug #15250: Potential XSS in HAProxy GUI when editing frontend listener actions or backend pool ACL actions. - pfSense Packages - pfSense bugtracker

Actions

Copy link

Bug #15250

closed

Potential XSS in HAProxy GUI when editing frontend listener actions or backend pool ACL actions.

Added by Jim Pingle about 1 year ago. Updated about 1 year ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

haproxy

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Affected Version:

Affected Plus Version:

Affected Architecture:

Description

Both haproxy_listeners_edit.php and haproxy_pool_edit.php define a custom cell drawing function which, unlike the standard one in the package, lacks encoding for its values when they are displayed.

As a consequence, values entered into the fields for frontend listener custom actions and backend ACL actions are printed back to the user without encoding, allowing HTML values to be passed which are then interpreted by the browser.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Packages

Custom queries

Bug #15250

Potential XSS in HAProxy GUI when editing frontend listener actions or backend pool ACL actions.

Updated by Jim Pingle about 1 year ago

Updated by Jim Pingle about 1 year ago

Updated by Kris Phillips about 1 year ago

Updated by Jim Pingle about 1 year ago