Closed
Bug 1389445
Opened 7 years ago
Closed 7 years ago
Full Path Disclosure
Categories
(bugzilla.mozilla.org :: Extensions, defect)
Tracking
()
RESOLVED
DUPLICATE
of bug 1389442
People
(Reporter: bughunter5672, Unassigned)
Details
User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0 Build ID: 20170628075643 Steps to reproduce: 1. Comment on any bug with below payload. Could not parse the 'params' argument as valid JSON. Error: , or } expected while parsing object/hash, at character offset 238 (before "astNode=pop();astNod...") at /data/www/bugzilla.mozilla.org/Bugzilla/WebService/Server/REST.pm line 375. Value: Actual results: Could not parse the 'params' argument as valid JSON. Error: , or } expected while parsing object/hash, at character offset 238 (before "astNode=pop();astNod...") at /data/www/bugzilla.mozilla.org/Bugzilla/WebService/Server/REST.pm line 375. Value: Expected results: Should not disclose any internal path which is normally not visible to remote users.
Comment 1•7 years ago
|
||
> Should not disclose any internal path which is normally not visible to remote users.
Why not? Which problem does the disclosure create? This ticket is missing the description of an actual problem.
Also note that Bugzilla is free software. Anyone can inspect its source code as it is available to public.
Flags: needinfo?(bughunter5672)
Updated•7 years ago
|
Status: UNCONFIRMED → RESOLVED
Closed: 7 years ago
Flags: needinfo?(bughunter5672)
Resolution: --- → DUPLICATE
Updated•5 years ago
|
Component: Extensions: EditComments → Extensions
You need to log in
before you can comment on or make changes to this bug.
Description
•