View Issue Details

IDProjectCategoryView StatusLast Update
0011233mantisbtsecuritypublic2010-02-22 14:34
Reporterdhx Assigned Todhx  
PriorityurgentSeveritymajorReproducibilityhave not tried
Status closedResolutionfixed 
Product Version1.2.0 
Target Version1.2.0Fixed in Version1.2.0 
Summary0011233: XSS on adm_config_report.php with user Real Name field
Description

As an administrator, set your real name in "My Account" to something including "<script>alert(42);</script>" and then go to adm_config_report.php

There will be multiple Javascript alerts that pop up due to unsanitised printing of the "Real Name" field for user accounts.

TagsNo tags attached.

Relationships

child of 0011234 closeddhx user_ensure_realname_valid() is not checked on account_page.php 

Activities

There are no notes attached to this issue.

Related Changesets

MantisBT: master a49cc3ce

2009-12-01 00:31

dhx


Details Diff
Fix 0011233: XSS on adm_config_report.php with user Real Name field

User real names were not sanitised on adm_config_report.php thus leading
to XSS attacks against those with permission to access the configuration
of a Mantis installation (typcially Administrators only).
Affected Issues
0011233
mod - adm_config_report.php Diff File

MantisBT: master-1.2.x 92561bce

2009-12-01 00:31

dhx


Details Diff
Fix 0011233: XSS on adm_config_report.php with user Real Name field

User real names were not sanitised on adm_config_report.php thus leading
to XSS attacks against those with permission to access the configuration
of a Mantis installation (typcially Administrators only).
Affected Issues
0011233
mod - adm_config_report.php Diff File