Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 2.4 M2
Affects Version/s: 2.3, 2.2.6, 2.4 RC1
Component/s: Web - Templates & Resources
Labels:
None

keywords:
security, xss, patch
Tests:

Integration
Difficulty:
Trivial
Similar issues:

Description

Injection over space, example:

http://localhost:8080/xwiki/bin/view/%22;alert%285%29;%2F%2F%3E%3Cscript%3Ealert%282%29%3C%2Fscript%3E/Test

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

XWIKI-5209-fix.patch
13 kB
25/May/10 14:37
XWIKI-5209-test.patch
1 kB
25/May/10 14:37

Activity

People

Assignee:: CalebJamesDeLisle

Reporter:: Alex Busenius

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 20/May/10 09:30

Updated:: 02/Dec/22 10:46

Resolved:: 03/Jun/10 19:49

Date of First Response:: 03/Jun/10 7:49 PM