View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0011261 | mantisbt | security | public | 2009-12-06 06:47 | 2010-02-22 14:34 |
Reporter | dhx | Assigned To | dhx | ||
Priority | high | Severity | major | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Product Version | 1.2.0 | ||||
Target Version | 1.2.0 | Fixed in Version | 1.2.0 | ||
Summary | 0011261: Don't rely on MantisCoreFormatting to provide string sanitisation for HTML output that can occur prior to plugins loading | ||||
Description | print_project_menu_bar() is called when an error occurs in MantisBT (to produce the HTML output for the error page). At this point of time, MantisCoreFormatting may not be loaded by MantisBT and therefore the stringdisplay* sanitisation functions won't be executed. Thus we must force the use of a the string_html_specialchars() function to ensure that these strings are safely sanitised even when MantisCoreFormatting isn't loaded. | ||||
Tags | No tags attached. | ||||
Steps to reproduce: <dhx_m> nuclear_eclipse: I can reproduce it again in a different place |
|
MantisBT: master-1.2.x ca638c79 2009-12-06 06:42 Details Diff |
Fix 0011261: XSS in error output as MantisCoreFormatting isn't loaded print_project_menu_bar() is called when an error occurs in MantisBT (to produce the HTML output for the error page). At this point of time, MantisCoreFormatting may not be loaded by MantisBT and therefore the string_display_* sanitisation functions won't be executed. Thus we must force the use of a the string_html_specialchars() function to ensure that these strings are safely sanitised even when MantisCoreFormatting isn't loaded (yet). |
Affected Issues 0011261 |
|
mod - core/html_api.php | Diff File | ||
MantisBT: master 26e2d3b6 2009-12-06 06:42 Details Diff |
Fix 0011261: XSS in error output as MantisCoreFormatting isn't loaded print_project_menu_bar() is called when an error occurs in MantisBT (to produce the HTML output for the error page). At this point of time, MantisCoreFormatting may not be loaded by MantisBT and therefore the string_display_* sanitisation functions won't be executed. Thus we must force the use of a the string_html_specialchars() function to ensure that these strings are safely sanitised even when MantisCoreFormatting isn't loaded (yet). |
Affected Issues 0011261 |
|
mod - core/html_api.php | Diff File |