Anonymous | Login
Project:
RSS
  
News | My View | View Issues | Roadmap | Summary

View Issue DetailsJump to Notes ] Issue History ] Print ]
ID
0012038
TypeCategorySeverityReproducibilityDate SubmittedLast Update
design defect[Openbravo ERP] C. Securitymajoralways2010-01-21 18:242022-02-01 08:08
ReporterefrieseView Statuspublic 
Assigned ToTriage Platform Base 
PriorityhighResolutionopenFixed in Version
StatusacknowledgedFix in branchFixed in SCM revision
ProjectionnoneETAnoneTarget Version
OSLinux 32 bitDatabasePostgreSQLJava version1.6.0_16
OS VersionCommunity ApplianceDatabase version8.3.8Ant version1.7.1
Product Version2.50MP9SCM revision 
Review Assigned To
Web browser
ModulesCore
Regression level
Regression date
Regression introduced in release
Regression introduced by commit
Triggers an Emergency PackNo
Summary

0012038: Multiple Cross-site Scripting Vulnerabilities in DataGrid.html

DescriptionThe values for inpAccessLevel, offset, and page_size are not validated/escaped to prevent malicious code from being executed by the browser.
Steps To ReproduceThe TamperData plugin for Firefox or another proxy will be needed to reproduce for offset and page_size. Visiting /openbravo/utility/DataGrid.html and setting inpAccessLevel to:

inpAccessLevel=4>%22%27><img%20src%3d%22javascript:alert(65234)%22>

To reproduce for offset and page_size, use the TamperData plugin to set the POST values to:

offset=0>%22%27><img%20src%3d%22javascript:alert('XSS')%22>
page_size=60>%22%27><img%20src%3d%22javascript:alert('XSS')%22>
Proposed SolutionThe values for inpAccessLevel, offset, and page_size should be escaped to prevent code from being executed in the browser. More info can be found at http://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29 [^]
TagsNo tags attached.
Attached Files

- Relationships Relation Graph ] Dependency Graph ]

-  Notes
(0052509)
AugustoMauch (administrator)
2012-09-24 23:39

Effort: 1
Impact: low
Plan: short

- Issue History
Date Modified Username Field Change
2010-01-21 18:24 efriese New Issue
2010-01-21 18:24 efriese Assigned To => alostale
2010-01-25 08:15 alostale Status new => scheduled
2010-01-25 08:15 alostale Assigned To alostale => shuehner
2011-10-28 13:54 dmitry_mezentsev Type defect => design defect
2012-02-20 11:14 shuehner Assigned To shuehner => alostale
2012-09-24 23:39 AugustoMauch Note Added: 0052509
2012-09-24 23:39 AugustoMauch Priority normal => high
2017-03-31 14:36 alostale Status scheduled => acknowledged
2017-04-10 14:35 alostale Assigned To alostale => platform
2022-02-01 08:08 alostale Assigned To platform => Triage Platform Base


Copyright © 2000 - 2009 MantisBT Group
Powered by Mantis Bugtracker