MantisBT: master 2e397700

Author Committer Branch Timestamp Parent
dhx dhx master 2010-08-04 09:23 master 083c34f0
Affected Issues  0012231: XSS vulnerability when uninstalling maliciously named plugins
Changeset

Fix 0012231: XSS vulnerability when uninstalling badly named plugins

John Reese discovered an XSS vulnerability with the uninstall
confirmation message shown when plugins are being uninstalled. The
plugin name is not escaped before being outputted and thus HTML unsafe
characters are not sanitised.

This doesn't actually pose a security risk because it requires someone
to:
a) Have access to the server to rename a plugin in the PHP files
b) Have administrator access to the MantisBT installation

mod - manage_plugin_uninstall.php Diff File