Project

General

Profile

Bug #8486

pkg_mgr_install.php: output variable not encoded before display

Added by Jim Pingle 30 days ago. Updated 12 days ago.

Status:
Resolved
Priority:
Very High
Assignee:
Category:
Package System
Target version:
Start date:
04/26/2018
Due date:
% Done:

100%

Affected Version:
2.4.x
Affected Architecture:
All

Description

It is possible to inject arbitrary html/JS into pkg_mgr_install.php on POST through the output parameter, which is not encoded before display

Associated revisions

Revision 687e50fd
Added by Steve Beaver 29 days ago

Fixed #8486 via htmlspecialchars()

Revision b662c5e4
Added by Steve Beaver 25 days ago

Fixed #8486 via htmlspecialchars()

(cherry picked from commit 687e50fd439179ba61a518c7b68c91b168e56e50)

Revision 5c856a1d
Added by Steve Beaver 25 days ago

Fixed #8486 via htmlspecialchars()

(cherry picked from commit 687e50fd439179ba61a518c7b68c91b168e56e50)

Revision 72f363ed
Added by Steve Beaver 25 days ago

Fixed #8486 via htmlspecialchars()

(cherry picked from commit 687e50fd439179ba61a518c7b68c91b168e56e50)

History

#1 Updated by Steve Beaver 29 days ago

  • Assignee changed from Renato Botelho to Steve Beaver

#2 Updated by Steve Beaver 29 days ago

  • Status changed from New to Feedback
  • % Done changed from 0 to 100

#3 Updated by Jim Pingle 29 days ago

  • Status changed from Feedback to Resolved

Unable to reproduce with the fix applied. Looks good to me.

#4 Updated by Jim Pingle 23 days ago

  • Target version changed from 2.4.4 to 2.4.3_1

#5 Updated by Jim Pingle 12 days ago

  • Private changed from Yes to No

Also available in: Atom PDF