Closed
Bug 974290
Opened 12 years ago
Closed 12 years ago
XSS with any extension.
Categories
(Firefox :: Untriaged, defect)
Tracking
()
RESOLVED
WONTFIX
People
(Reporter: shaheemirza, Unassigned)
Details
Attachments
(1 file)
|
2.08 MB,
video/mp4
|
Details |
User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:27.0) Gecko/20100101 Firefox/27.0 (Beta/Release)
Build ID: 20140130123732
Steps to reproduce:
Open a blank file in text editor.
paste this code:
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Shahee Mirza</title>
</head>
<body>
<img src=x onerror=alert('XSSed')>
</body>
</html>
now save it as hello.xss or hello.hak.
Now open it.
Actual results:
Executing HTML.
Expected results:
Render as a plain text or say Invalid file Type or ask to download.
This is supposed to work this way, this is not xss as the code executes from the same domain in which it was invoked. In order for this to be cross site, you would have to get script from one domain to execute in another domain.
https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29
"Cross-Site Scripting (XSS) attacks are a type of injection problem, in which malicious scripts are injected into the otherwise benign and trusted web sites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user. Flaws that allow these attacks to succeed are quite widespread and occur anywhere a web application uses input from a user in the output it generates without validating or encoding it. "
This kind of behavior would normally be called self-xss as you did it to yourself.
Group: core-security
Status: UNCONFIRMED → RESOLVED
Closed: 12 years ago
Resolution: --- → WONTFIX
|
Reporter | |
Comment 2•12 years ago
|
||
Yes, you are right. I was misunderstood the issue.
You need to log in
before you can comment on or make changes to this bug.
Description
•