Development

Wiki Start
Wishlist
Timeline
Roadmap
Browse Source
New Ticket
View Tickets

Ticket #1258 (closed defect: fixed)

Opened 7 months ago

Last modified 7 months ago

possible XSS - Cross Site Scripting in some GUI-files

Reported by: anonymous Assigned to: rats
Priority: critical Milestone: ispCP ω 1.0.0 - RC5
Component: Frontend (GUI) Version: ispCP ω 1.0.0 - RC4
Severity: Don't know Keywords:
Cc:

Description

This example XSS-code may be injected in some GUI-files 

"><script>alert(document.lastModified)</script>

files with XSS enclosures:

1. admin/change_personal.php

2. reseller/change_personal.php

3. client/change_personal.php

4. admin/view_ticket.php

5. reseller/view_ticket.php

6. client/view_ticket.php

Possible attacker workflows:

1. attacker gets access to a client account, now he opens a new ticket with XSS-code, now he can attack the reseller/admin

2. attacker has acces to a client account: he changes the personal data with XSS-code, now he can attack the reseller/admin

tested with trunk at circa r1150

Attachments

Change History

05/16/08 08:53:42 changed by rats

  • owner set to rats.
  • status changed from new to assigned.
  • milestone changed from Working to ispCP ω 1.0.0 - RC5.

05/16/08 09:31:37 changed by rats

  • status changed from assigned to closed.
  • resolution set to fixed.

thank you; I've fixed this issue in r1157 - someone set a param to the wrong value.

Add/Change #1258 (possible XSS - Cross Site Scripting in some GUI-files)




Action