Potential XSS in services_acb.php via download parameter
Backup / Restore
Attempt to load /services_acb.php?download=%22%3E%3Cscript%3Ealert(1)%3C/script%3E and the client displays a JS alert.
The download parameter it being put into a URL for the Revision tab without encoding at source:src/usr/local/www/services_acb.php#L374
- Status changed from New to Feedback
- % Done changed from 0 to 100
- Target version changed from 2.5.0 to 2.4.4-p3
- Parent task changed from #9398 to #9515
- Status changed from Feedback to Resolved
Unable to reproduce on -p3. Looks good.
- Private changed from Yes to No
Also available in: Atom