New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Permanent XSS attack through Report's Name field #140

Closed
bernatgs opened this Issue Dec 21, 2018 · 3 comments

Comments

@bernatgs
Copy link

bernatgs commented Dec 21, 2018

Environment

  • Platform version: 6.9.10
  • Client type: Web
  • Browser: tested in Firefox and Chrome

Description of the bug or enhancement

  • Login and navigate to Reports > Reports
  • Click Create > New
  • In the name field, type <img src=x onerror="alert('persistent XSS attack')";>
  • Click Save and close
  • Edit the newly created report by double-click or click & Edit
  • Hover mouse over the tab with the text Edit report "<img src=x o...

imagen

  • Expected behavior: nothing happens
  • Actual behavior: javascript code is executed

imagen

@bernatgs bernatgs changed the title Permanent XSS attack through Permanent XSS attack through Report's Name field Dec 21, 2018

@jreznot jreznot added this to the Release 6.10 milestone Dec 22, 2018

@jreznot jreznot modified the milestones: Release 6.10, Release 6.9 Dec 22, 2018

@bernatgs

This comment has been minimized.

Copy link

bernatgs commented Jan 3, 2019

This vulnerability was discovered by @juanrafaelvillen, please contact him for any question or comment.

@jreznot

This comment has been minimized.

Copy link
Member

jreznot commented Jan 3, 2019

Hi, we are working on this. Thank you for reporting the security problem.

@glebfox

This comment has been minimized.

Copy link
Member

glebfox commented Jan 9, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment