[FELIX-6127] escape nameHint for configuration listing - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: webconsole-4.3.8
Fix Version/s: webconsole-4.3.10
Component/s: Web Console
Labels:
None

Description

There is a XSS vulnerability in configMgr where adding a html or script tag in log file name. Since this console is only accessible to admin, threat rating of this vulnerability is very low.

Steps to reproduce :

In /system/console/configMgr, find Apache Sling Logging Logger Configuration
Edit one of the logs, e.g logs/auditlog.log
Change to logs/auditlog.log<script>alert("xss")</script>
Click Save and refresh
Scroll to the configuration and see alert pop up injected

Expected Behavior : Injected script should be escaped.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

escape_namehint_config_js.patch
14/May/19 11:52
1 kB
Ashok Kumar
nameHint_escape_tags.patch
09/May/19 09:48
3 kB
Ashok Kumar

Activity

People

Assignee:: Karl Pauls

Reporter:: Ashok Kumar

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 09/May/19 09:48

Updated:: 20/May/19 11:30

Resolved:: 15/May/19 20:19