Skip to:

Skip to Jira Navigation
Skip to Side Navigation
Skip to Main Content

Additional cross-site scripting bugs in login

Description

Additional cross-site scripting attacks possible in the login form.

Environment

None

Linked issues

is related to

Authentication bypass allowing arbitrary code execution

CallLogDAO in SIP Plugin enables SQL Injection

Cross-site scripting attack in the login form

Activity

Show:

Daniel Henninger July 17, 2008 at 10:00 PM

A trivial demo of this:
http://blathersource.org:9090/login.jsp?url=%22%3E%3Cscript%20type=%22text/javascript%22%3Ealert(%22hi%22)%3C/script%3E

Daniel Henninger May 22, 2008 at 8:21 AM

Patience =) I aim to fix these and some other assorted issues for 3.5.2!

LG May 22, 2008 at 2:45 AM

Hi,

I really wonder why it take so long to resolve this issue. Just ignoring the parsed parameters (everything behind the ?) would be fine to fix this issue.
Of course one would no longer be able to access URL's directly and to set the username but that's how other applications solve this issue.

LG

Fixed

Details
Assignee
Daniel Henninger
Reporter
MattM
Components
Fix versions
3.6.0
Affects versions
2.6.0
Priority
Blocker

Created April 8, 2006 at 1:38 AM

Updated November 12, 2008 at 3:41 PM

Resolved August 25, 2008 at 11:48 PM