XSS in page content editor
Bug #1375092 reported by
Simon Coggins
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Mahara |
Fix Released
|
High
|
Robert Lyon | ||
| 1.10 |
Fix Released
|
High
|
Unassigned | ||
| 15.04 |
Fix Released
|
High
|
Robert Lyon | ||
Bug Description
Steps to reproduce in master:
1. Create a page
2. Click "Text box" in the content editor
3. Enter "<script>
4. Click "Text box" in the content editor again. (Note: do not drag/drop a text box, only happens if you click)
What happens:
An alert is popped up on the page.
What should happen:
Alert should not be shown.
Proposed fix is attached as a patch. Note that while the attached patch fixes it for me there are other references to h2.title in that file, so you might want to confirm that this fixes it properly.
Simon
CVE References
Revision history for this message
| Simon Coggins (simon-coggins) wrote | #1 |
Revision history for this message
| Aaron Wells (u-aaronw) wrote | #2 |
| Changed in mahara: | |
| importance: | Undecided → High |
| milestone: | none → 1.10.0 |
Revision history for this message
| Robert Lyon (robertl-9) wrote | #3 |
| Changed in mahara: | |
| status: | New → In Progress |
| assignee: | nobody → Robert Lyon (robertl-9) |
Revision history for this message
| Aaron Wells (u-aaronw) wrote | #4 |
| Changed in mahara: | |
| status: | In Progress → Fix Committed |
| information type: | Private Security → Public Security |
| tags: | added: regresion |
| tags: |
added: regression removed: regresion |
| Changed in mahara: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
Thanks for the bug report & patch, Simon!