Uploaded image for project: 'XWiki Rendering'
  1. XWiki Rendering
  2. XRENDERING-663

XSS Javascript injection via XWiki 2.x syntax

    XMLWordPrintable

Details

    • Unit
    • High
    • Hard
    • N/A
    • N/A
    • Pull Request accepted

    Description

      To reproduce, just type the following in any document :

      [[Click!>>path:javascript:alert('XSS')]].

      Attachments

        Issue Links

          depends on

          Improvement - An improvement or enhancement to an existing feature or task. XCOMMONS-1680 Filter Html attributes in restricted mode based on a whitelist

          • Major - Major loss of function.
          • Closed
          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-19141 stored XSS on XWiki

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-19602 Vulnerability in the XWiki

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-8593 XSS in images and links using on* parameter.

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. XWIKI-4740 Parser should filter (% style="background:url('javascript:badscript') %) because some browsers will execute such script.

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-19514 XSS using a JSX object

          • Blocker - Blocks development and/or testing work, production could not run.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-18049 Improve the html escaping mechanism for XSS protection

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          links to

          Web Link GitHub Security advisory

          Web Link Pull request

          Activity

            People

              MichaelHamann Michael Hamann
              thomas_delafosse Thomas Delafosse
              Chenming Xu, Diana
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: