Actions
Bug #9335
openStored XSS in HAProxy / haproxy_listeners_edit.php
Start date:
02/18/2019
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Affected Version:
All
Affected Plus Version:
Affected Architecture:
All
Description
There is a stored XSS on haproxy_listeners.php via parameters submitted on haproxy_listeners_edit.php:
The following parameters are not encoded before display back to the user:
- desc
- table_actionsaclN
Since these are free-form, they can't be fully validated, so adding encoding is sufficient.
Updated by Jim Pingle almost 6 years ago
- Status changed from New to Feedback
- Private changed from Yes to No
fix committed in haproxy pkg v 0.59_16 and haproxy-devel pkg v 0.59_17
- https://github.com/pfsense/FreeBSD-ports/commit/3b40366aca55910b224ecf49d3fdacc9ad6c04f5
- https://github.com/pfsense/FreeBSD-ports/commit/2dded47b3202dfdf89aa96f84bf701b3d5acbe6c
Package is now available for 2.4.4 users.
Actions