Project

General

Profile

Actions
Copy link

Bug #8486

closed

pkg_mgr_install.php: output variable not encoded before display

Added by Jim Pingle over 3 years ago. Updated over 3 years ago.

Status:
Resolved
Priority:
Very High
Assignee:
Steve Beaver
Category:
Package System
Target version:
2.4.3-p1
Start date:
04/26/2018
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.4.x
Affected Architecture:
All

Description

It is possible to inject arbitrary html/JS into pkg_mgr_install.php on POST through the output parameter, which is not encoded before display

Actions
Copy link
 #1

Updated by Steve Beaver over 3 years ago

  • Assignee changed from Renato Botelho to Steve Beaver
Actions
Copy link
 #2

Updated by Steve Beaver over 3 years ago

  • Status changed from New to Feedback
  • % Done changed from 0 to 100
Actions
Copy link
 #3

Updated by Jim Pingle over 3 years ago

  • Status changed from Feedback to Resolved

Unable to reproduce with the fix applied. Looks good to me.

Actions
Copy link
 #4

Updated by Jim Pingle over 3 years ago

  • Target version changed from 2.4.4 to 2.4.3-p1
Actions
Copy link
 #5

Updated by Jim Pingle over 3 years ago

  • Private changed from Yes to No
Actions
Copy link

Also available in: Atom PDF