Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Stored XSS in Company Name #5222

Closed
prodigysml opened this issue Oct 27, 2017 · 2 comments
Closed

Stored XSS in Company Name #5222

prodigysml opened this issue Oct 27, 2017 · 2 comments
Labels
bug Issues or PR's relating to bugs

Comments

@prodigysml
Copy link

What type of report is this:

Q A
Bug report?
Feature request?
Enhancement?

Description:

Stored Cross-site scripting in the Company's name. This allows a person to gain arbitrary execution of JS code on anyone who views the Company's name within their browser.

If a bug:

Q A
Mautic version 2.11.0
PHP version 7.0

Steps to reproduce:

  1. Create a new company
  2. Set the company name to <img src=x onerror=alert(1)>
  3. Navigate to a place where the company name is reflected and observe an alert box pop up

Log errors:

Please check for related errors in the latest log file in [mautic root]/app/log/ and/or the web server's logs and post them here. Be sure to remove sensitive information if applicable.

None

@dbhurley dbhurley added the bug Issues or PR's relating to bugs label Dec 6, 2017
@dbhurley
Copy link
Member

dbhurley commented Dec 6, 2017

Good catch, fields will need to be sanitized on company.

@escopecz
Copy link
Sponsor Member

Already fixed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug Issues or PR's relating to bugs
Projects
None yet
Development

No branches or pull requests

3 participants