Dotclear

Ticket #679 (closed defect: fixed)

Opened 17 years ago

Last modified 17 years ago

XSS dans l'administration

Reported by: seneque Owned by: olivier
Priority: normal Milestone:
Component: security Version: 2.1
Severity: normal Keywords:
Cc:

Description

bonjour, dans l'administration à l'affichage d'un post (admin/post.php), il y a une vulnérabilité de type XSS. version affectée: 2.1.4 Dans le blog, on rentre un commentaire avec comme auteur: "><script>alert('test')</script><" (les guillements font partie du nom de l'auteur.

correction possible: dans admin/post.php à la ligne 642 remplacer '<td class="maximal">'.$rs->comment_author.'</td>'. par '<td class="maximal">'.html::escapeHTML($rs->comment_author).'</td>'.

Change History

comment:1 Changed 17 years ago by bruno

(In [2738]) Fixed XSS in post.php, see #679

comment:2 Changed 17 years ago by olivier

  • Status changed from new to closed
  • Resolution set to fixed

(In [2739]) Merged r2738 in trunk. Closes #679.

Note: See TracTickets for help on using tickets.

Sites map