Closed Bug 902963 Opened 11 years ago Closed 11 years ago

Stored XSS on wiki.mozilla.org

Categories

(Websites :: wiki.mozilla.org, defect)

defect
Not set
normal

Tracking

(Not tracked)

RESOLVED DUPLICATE of bug 878214

People

(Reporter: fabiancuchietti, Unassigned)

Details

(Whiteboard: [site:wiki.mozilla.org][reporter-external])

Attachments

(1 file)

Attached image stored-xss-mozilla.png
User Agent: Mozilla/5.0 (Windows NT 6.1; rv:22.0) Gecko/20100101 Firefox/22.0 (Beta/Release)
Build ID: 20130618035212

Steps to reproduce:

1) Go to wiki.mozilla.org
2) Select an article to edit.
3) Insert the following payload: "><var onmouseover="prompt(/XSSED/)">Click me!</var>
Status: UNCONFIRMED → RESOLVED
Closed: 11 years ago
Resolution: --- → DUPLICATE
Flags: sec-bounty-
Whiteboard: [site:wiki.mozilla.org][reporter-external]
If this bug really is a duplicate of that one, could you add me as CC on it?
Group: websites-security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: