Closed Bug 236142 Opened 16 years ago Closed 16 years ago

editusers.cgi XSS vulnerability

Categories

(Bugzilla :: Administration, task)

task
Not set

Tracking

()

RESOLVED DUPLICATE of bug 206037

People

(Reporter: goobix, Assigned: justdave)

Details

We currently do this:

unless (TestUser $user) {
    print "Sorry, user '$user' does not exist.";
    PutTrailer();
    exit;
}

We should probably value_quote that $user variable. If an admin is made to click
on a hijacked URL, that can lead to cookie leaks or something similar.
This could be fixed while templatizing the whole thing.. it makes XSS
vulnerabilities much harder to happen because we do better testing on them.

*** This bug has been marked as a duplicate of 206037 ***
Status: NEW → RESOLVED
Closed: 16 years ago
Resolution: --- → DUPLICATE
bug 206037 has been fixed.
Group: webtools-security
QA Contact: matty_is_a_geek → default-qa
You need to log in before you can comment on or make changes to this bug.