Actions
Bug #25169
closed
CVE-2018-14664 - Persisted XSS on all pages that use breadcrumbs
Difficulty:
Triaged:
No
Bugzilla link:
Pull request:
Description
If user has the permission to edit resource which attribute is user in the breadcrumbs bar, it's not properly escaped allowing attacker to store code, that will be executed on client side. E.g. create a domain with name test.<b>com</b>, the go to it's edit form. See the breadcrumb didn't escape the HTML code.
This has been introduced in 1.18
Updated by Marek Hulán over 6 years ago
- Related to Feature #22236: Add breadcrumbs to foreman UI added
Updated by Marek Hulán over 6 years ago
- Related to Feature #22855: Add redux container for breadcrumb switcher added
Updated by Marek Hulán over 6 years ago
- Related to deleted (Feature #22236: Add breadcrumbs to foreman UI)
Updated by The Foreman Bot over 6 years ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman/pull/6132 added
Updated by Marek Hulán over 6 years ago
- Subject changed from Persisted XSS on all pages that use breadcrumbs to CVE-2018-14664 - Persisted XSS on all pages that use breadcrumbs
Updated by Tomer Brisker over 6 years ago
- Fixed in Releases 1.18.3, 1.19.1, 1.20.0 added
Updated by Amir Fefer over 6 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset 3a0c10ce1b881953001d2207888a89528697d6cb.
Updated by Adam Ruzicka over 6 years ago
- Related to Bug #25503: Breadcrumb show allow truncation with full title in tooltip on mouse hover added
Updated by Tomer Brisker over 6 years ago
- Bugzilla link changed from 1638130 to 1652999
Updated by Tomer Brisker over 5 years ago
- Related to Bug #26822: Create host in breadcrumbs in host detail page after creating a host added
Actions