[CMS-3651] Cross-site scripting possible using IMG-tags in Xinha field - Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Top
Resolution: Fixed
Affects Version/s: r2.09.05
Fix Version/s: r2.12.07, r2.13.00
Component/s: addon-cms-prototype
Labels:
None

Description

Within a XInha field, the HTML can be edited directly. The XSS examples below are not correctly filtered

Reproduction:

Create a new document.
Select html mode for a Xinha field
Enter one of the examples below
Press finished.

Expected:
The editor filters the script elements from the HTML

Result:
The editor leaves the scripts in the HTML. There is a possibility of cross-site scripting.

------------------
Examples:
------------------
Werkt voor nagenoeg alle browsers (IE7, FF3.5, Opera 10.10):
<IMG SRC=""><SCRIPT>alert("Hack works!")</SCRIPT></IMG>

Werkt onder Opera 10.10:
<IMG SRC="javascript:alert('Hack works!');"/>

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

stack
4 kB
16/Mar/10 1:24 PM
opera.png
24 kB
16/Mar/10 12:34 PM
ie8.png
20 kB
16/Mar/10 12:33 PM
firefox.png
21 kB
16/Mar/10 12:33 PM
chrome.png
21 kB
16/Mar/10 12:35 PM

Activity

People

Assignee:: Frank van Lankvelt (Inactive)

Reporter:: Dennis Dam (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 15/Jan/10 1:49 PM

Updated:: 02/Jan/14 3:18 PM

Resolved:: 10/Mar/10 10:57 AM

Details

Description

Attachments

Attachments

Activity

People

Dates

related-pages-webpanel