Skip to content

Commit

Permalink
U4-10506 Importing a specially crafted document type file can cause X…
Browse files Browse the repository at this point in the history 
…XE attack
  • Loading branch information
@nul800sebastiaan
nul800sebastiaan committed Oct 6, 2017
1 parent fe2b86b commit 5dde2ef
Showing 1 changed file with 4 additions and 2 deletions.
6 changes: 4 additions & 2 deletions src/Umbraco.Web/umbraco.presentation/umbraco/dialogs/importDocumenttype.aspx.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,10 +70,11 @@ private void InitializeComponent()
private void import_Click(object sender, EventArgs e)
{
var xd = new XmlDocument();
xd.XmlResolver = null;
xd.Load(tempFile.Value);

var userId = base.getUser().Id;

var element = XElement.Parse(xd.InnerXml);
var importContentTypes = ApplicationContext.Current.Services.PackagingService.ImportContentTypes(element, userId);
var contentType = importContentTypes.FirstOrDefault();
Expand Down Expand Up @@ -104,7 +105,8 @@ private void submit_Click(object sender, EventArgs e)
documentTypeFile.PostedFile.SaveAs(fileName);

var xd = new XmlDocument();
xd.Load(fileName);
xd.XmlResolver = null;
xd.Load(fileName);
dtName.Text = xd.DocumentElement.SelectSingleNode("//DocumentType/Info/Name").FirstChild.Value;
dtAlias.Text = xd.DocumentElement.SelectSingleNode("//DocumentType/Info/Alias").FirstChild.Value;

This comment has been minimized.

Sign in to view

Copy link
@velasqez

velasqez Nov 6, 2017

}
Expand Down

0 comments on commit 5dde2ef

Please sign in to comment.