Bug #21519

CVE-2017-15100: Stored XSS in fact name or value

Added by Tomer Brisker 24 days ago. Updated 19 days ago.

Status:Closed
Priority:Normal
Assigned To:Tomer Brisker
Category:Security
Target version:-
Difficulty: Bugzilla link:
Found in release:1.2.0 Pull request:https://github.com/theforeman/foreman/pull/4967
Story points-
Velocity based estimate-
Release1.16.0Release relationshipAuto

Description

Sending a fact name or value containing HTML can lead to a stored XSS in the following pages:

- Facts page - When opening a chart for a fact that has HTML in it's name or as one of the values.
- Trends page - A trend containing a value that includes HTML in it.
- Statistics page - Fact values that are aggregated on the page such as manufacturer and contain HTML.

This issue has been reported by Roman Mueller.

Associated revisions

Revision 81e40e3a
Added by Tomer Brisker 19 days ago

Fixes #21519 - Prevent stored XSS on fact charts

History

#1 Updated by Tomer Brisker 24 days ago

  • Release set to 1.16.0

Setting for 1.16 for now, will possibly do another 1.15 release if needed.

#2 Updated by Tomer Brisker 24 days ago

  • Description updated (diff)

#3 Updated by The Foreman Bot 24 days ago

  • Status changed from Assigned to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/4967 added

#4 Updated by Tomer Brisker 20 days ago

  • Subject changed from Stored XSS in fact name or value to CVE-2017-15100: Stored XSS in fact name or value

#5 Updated by Anonymous 19 days ago

  • % Done changed from 0 to 100
  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF