Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

XSS Bug escaping clipText returned

  • Loading branch information...
commit 51b67b6d696f62aaf003210c08542588222c4913 1 parent 76e6ce7
@jonrohan jonrohan authored
View
BIN  ZeroClipboard.swf
Binary file not shown
View
1  docs/releases.md
@@ -3,6 +3,7 @@
To the future, 1.1.4 will address any bugs from the previous release.
* [SECURITY] Removing `flash.system.Security.allowDomain("*");` default. now should be set via flashvars.
+* [SECURITY] XSS Vunerability, the clipText returned from the flash object needs to be escaped.
### ZeroClipboard 1.1.1, 1.1.2, 1.1.3
View
2  src/flash/ZeroClipboard.as
@@ -86,7 +86,7 @@
// signal to the page it is done
ExternalInterface.call( 'ZeroClipboard.dispatch', 'complete', metaData(event, {
- text: clipText,
+ text: clipText.split("\\").join("\\\\"),
format: clipFormat
}));
}
Please sign in to comment.
Something went wrong with that request. Please try again.