[CMS-2994] Prevent javascript and JCR SQL injection - Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: High
Resolution: Fixed
Affects Version/s: r2.06.07
Fix Version/s: Icebox
Component/s: None
Labels:
None

Description

In the CMS' editor it is possible to save a piece of javascript code. When another user loads that same document, it is possible to hijack that user's session. Unfortunately I don't have a clear use case, since the person who found out is not in the office atm.

Another security vulnerability is JCR injection (which is similar to SQL injection), although the hacker needs enough security rights to effectively use it. Alas, I also don't have clear usecases. I will provide use cases later when I contact the security guy

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Dennis Dam (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 18/Aug/09 9:10 AM

Updated:: 04/Aug/10 3:07 PM

Resolved:: 04/Aug/10 3:07 PM