Closed Bug 1094795 Opened 10 years ago Closed 10 years ago

XSS auditing

Categories

(Core :: Security, defect)

Product:
Core
Component:
Security
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 528661

People

(Reporter: Yoric, Unassigned)

Details

(Keywords: sec-want, Whiteboard: [parity-chrome][parity-opera])

Apparently, Chrome/Opera has a XSS prevention feature. e.g. following http://berghain.de/events/%22%20onmouseover=%22alert%28%27NEIN!%27%29 will introduce a XSS in Firefox, but not in Chrome/Opera (the XSS is triggered by mouseover on the link to the right of the screen). We should investigate this.
When loading the page in Opera, their console displays The XSS Auditor refused to execute a script in 'http://berghain.de/events/%22%20onmouseover=%22alert%28%27NEIN!%27%29' because its source code was found within the request. The auditor was enabled as the server sent neither an 'X-XSS-Protection' nor 'Content-Security-Policy' header. I haven't checked the contents of the page, but our devtools shows up the XSS as a separate source, so that looks like something we could easily detect, too.
Whiteboard: [parity-chrome] → [parity-chrome][parity-opera]
Status: NEW → RESOLVED
Closed: 10 years ago
Component: General → Security
Product: Firefox → Core
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.