Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-17374

XSS Cross Site Scripting

    XMLWordPrintable

Details

    • Unit
    • Unknown
    • N/A
    • N/A
    • Pull Request accepted

    Description

      Some fileds like "Company" in the user profile editing section, are vulnerables to Cross Site Scripting XSS.

      So, inserting for example "<script> alert("XSS Cross Site Scripting in this field !!!"); </script>" in the Company field someone has access to this page can inject malicious code.

      An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execute the script. Because it thinks the script came from a trusted source, the malicious script can access any cookies, session tokens, or other sensitive information retained by the browser and used with that site.

       

      **Steps to reproduce the issue**

      1. Login as admin
      2. Create a test user
      3. Open the user profile page (https://localhost/bin/view/XWiki/<user>)
      4. Click edit button near Personal Information
      5. Edit Company field and insert for example <script> alert("Hello World!"); </script>
      6. Save & View and see the XSS in action

      Attachments

        Issue Links

          blocks

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-9658 XSS in the user profile

          • Major - Major loss of function.
          • Closed
          depends on

          New Feature - A new feature of the product, which has yet to be developed. XCOMMONS-2016 Add a new escape method that only escape the minimal amount of XML special characters

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. XWIKI-17766 Update deprecated method calls to org.xwiki.xml.XMLUtils

          • Major - Major loss of function.
          • Closed
          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-18565 Stored XSS

          • Major - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-9680 Apostrophes in static list value are encoded on .display()

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-18038 Livetable "html" field parameter doesn't generate HTML code anymore

          • Blocker - Blocks development and/or testing work, production could not run.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-18049 Improve the html escaping mechanism for XSS protection

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Task - A task that needs to be done. XWIKI-18122 Revert object displayer value escaping on 11.10.x

          • Major - Major loss of function.
          • Closed
          links to

          Web Link Security Advisory

          Activity

            People

              mleduc Manuel Leduc
              Astaruf Lorenzo Anastasi
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: