Closed Bug 1351214 Opened 9 years ago Closed 9 years ago

xss reflected

Tracking

()

Status:

RESOLVED INVALID

People

(Reporter: andreasheeneluna, Unassigned)

Details

Attachments

(1 file)

xssmozilla.png 9 years ago Andrea Sheene Luna 35.82 KB, image/png		Details

Andrea Sheene Luna

Reporter

Description

•

9 years ago

Attached image xssmozilla.png — Details

User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0 Build ID: 20170316213829 Steps to reproduce: i try to entext and xss script in a browser and its reflected Actual results: it will reflect to xss Expected results: xss reflected

Daniel Veditz [:dveditz]

Comment 1

•

9 years ago

This appears to be a valid data: URL doing what the specification says data: urls should do. Maybe there's missing context here? see also bug 255107 and more recently bug 1324406

Group: core-security

Status: UNCONFIRMED → RESOLVED

Closed: 9 years ago

Resolution: --- → INVALID

Firefox Bug Husbandry Bot

Comment 2

•

8 years ago

Moving from Core::Untriaged to Core::General https://bugzilla.mozilla.org/show_bug.cgi?id=1407598

Component: Untriaged → General

You need to log in before you can comment on or make changes to this bug.

Bugzilla

xss reflected

Categories

(Core :: General, defect)

Tracking

()

People

(Reporter: andreasheeneluna, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Attachment

General

Description

File Name

Content Type