Closed
Bug 873741
Opened 11 years ago
Closed 8 years ago
XSS at people.mozilla.org
Categories
(Websites :: other.mozilla.org, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: dhavalchauhan171994, Unassigned)
Details
(Keywords: wsec-xss, Whiteboard: [reporter-external][site:people.mozilla.org])
Hi, There is a XSS at people.mozilla.org Steps to reproduce : 1. Click on this link : http://people.mozilla.org/~mwargers/tests/unminimized/white-house-waits-tensely-for-decision-on-health-law_bestanden/12-0550_DigitalSub_336x280.swf?clicktag=javascript:alert%287155%29 2. Click on the button "Click Here" Viola, XSS is triggered
|
Reporter | |
Comment 1•11 years ago
|
||
This bug runs in Mozilla Firefox
|
||
Comment 2•11 years ago
|
||
Adding keywords to bugs for metrics, no action required. Sorry about bugmail spam.
Keywords: wsec-xss
|
||
Updated•11 years ago
|
Assignee: mitchell → nobody
Group: mozilla-corporation-confidential → websites-security
Component: Miscellaneous → other.mozilla.org
Product: mozilla.org → Websites
This bug is still active and confirmed
Status: UNCONFIRMED → NEW
Ever confirmed: true
|
|
||
Updated•11 years ago
|
Whiteboard: [reporter-external]
|
||
Updated•11 years ago
|
Whiteboard: [reporter-external] → [reporter-external][site:people.mozilla.org]
|
||
Comment 4•8 years ago
|
||
Renamed file on server, new extention .XSS.DONOTUSE so it won't match an executable mime type
Group: websites-security
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•