Potential XSS in image create modal or angular table
Bug #1622690 reported by
Daniel Castellanos
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Dashboard (Horizon) |
Fix Released
|
High
|
Richard Jones | ||
OpenStack Security Advisory |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
The Image Create modal allows you to create an image sending unencoded HTML and JavaScript. This could lead to a potential XSS attack
Steps to reproduce:
1. Go to project>images
2. Click on "Create image"
3. In the "Image Name" input enter some HTML code or script code (i.e <h1>This is bad</h1>, <script>alert('This is bad');</script>)
4. Fill in other required fields
5. Click on 'Create Image'
Expected Result:
The image is created but the name is safely encoded and it's shown in the table as it was written
Actual Result:
The image name is not encoded an therefore is being rendered as HTML by the browser.
Changed in ossa: | |
status: | New → Incomplete |
description: | updated |
description: | updated |
description: | updated |
Changed in horizon: | |
status: | New → Confirmed |
importance: | Undecided → High |
milestone: | none → newton-rc1 |
Changed in horizon: | |
status: | Confirmed → Fix Committed |
assignee: | nobody → Richard Jones (r1chardj0n3s) |
information type: | Private Security → Public Security |
description: | updated |
Changed in horizon: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Since this report concerns a possible security risk, an incomplete security advisory task has been added while the core security reviewers for the affected project or projects confirm the bug and discuss the scope of any vulnerability along with potential solutions.