[XRAY-5315] Stored XSS project name field - Xblend Issue Tracker

Xporter

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Done
Affects Version/s: 3.6.4
Fix Version/s: 4.0.0
Component/s: Security
Labels:
- security_vulnerability_medium

Sprint:
R4.0.0 Blue S5
Requirement Status:
OK
- 1

Description

The Requirement Projects does not encode html name of project, a user who can edit project name or create new project can inject xss code, leads to XSS attack Admin User.

Replication steps

Edit or create new project with name: <svg/onload=alert(1) />
Login to Admin > Go http://<ip_server>:8080/secure/admin/views/XrayRequirementProjectsConfiguration.jspa The malicious xss code is trigged.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

image-2020-03-17-17-10-58-401.png
50 kB
17/Mar/20 5:10 PM

Activity

People

Assignee:: Paulo Alves

Reporter:: Diamantino Campos

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 17/Mar/20 5:11 PM

Updated:: 18/Feb/21 5:26 PM

Resolved:: 18/Feb/21 5:26 PM

Time Tracking

Estimated:

Remaining:

Logged:

6h 20m