request #7828 XSS in graphs on tracker plugin

Artifact

Infos

Artifact ID#7828

Submitted byThomas Gerbet (tgerbet)

Last Modified On2015-03-04 16:22

Submitted on2015-02-02 16:52

Rank7834

Details

Summary *

XSS in graphs on tracker plugin

Original Submission

XSS could be injected in graphs on tracker plugin using URL parameters or an artefact.

Impact

An attacker could use this vulnerability to force a victim to execute uncontrolled code.
CVSS2 score : 4 (AV:N/AC:L/Au:S/C:N/I:P/A:N)

Exploitation

Create a report on a artifact with name containing something like <script>alert(1)</script>.

Edit a report with a name containing something like <script>alert(2)</script>.

References

https://cwe.mitre.org/data/definitions/79.html
https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29

CategoryTrackers

Reported in versionAll

PlatformEmpty

Is an Enhancement or an internal improvement?

[ ] enhancement
[ ] internal improvement

CC listEmpty

Stage

Assigned toEmpty

StatusClosed

Close date2015-02-05

Attachments

Connected artifacts

Artifact links

Empty

Reverse artifact links

Releases

AttachmentsEmpty

References

Cross references

Referencing request #7828

Artifact Tracker v5

Git commit

tuleap/tuleap/stable

Merge commit 'refs/changes/90/3590/2' of ssh://gerrit.tuleap.net:29418/tuleap into HEAD 5165e6b90b

Benjamin Dauton (bdauton_enalean) , 2015-02-05 11:48

request #7828: Fix XSS in graph on tracker plugin 4d46a97fea

Thomas Gerbet (tgerbet) , 2015-02-03 10:53

request #7828: Fix XSS in graph on tracker plugin 64df9c588c

Thomas Gerbet (tgerbet) , 2015-03-02 11:07

tuleap/u/vaceletm/tuleap/dev

Merge commit 'refs/changes/90/3590/2' of ssh://gerrit.tuleap.net:29418/tuleap into HEAD 5165e6b90b

Benjamin Dauton (bdauton_enalean) , 2015-02-05 11:48

request #7828: Fix XSS in graph on tracker plugin 4d46a97fea

Thomas Gerbet (tgerbet) , 2015-02-03 10:53

Release

Show items referenced by request #7828

Referenced by request #7828

Other

Follow-ups

Manuel Vacelet (vaceletm)

2015-03-04 16:22

Disclose after Release 7.11

Sandra Echinard (sechinard)

2015-03-02 17:38

Mass Change

Benjamin Dauton (bdauton_enalean)

2015-02-05 11:51

Integrated in Tuleap 7.10.99.2

Status changed from Under review to Closed
Close date set to 2015-02-05

Thomas Gerbet (tgerbet)

2015-02-03 14:00

Original Submission

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes

Thomas Gerbet (tgerbet)

2015-02-02 17:12

See gerrit #3590.

Summary
-~~Reflected~~ XSS in graphs on tracker plugin
+XSS in graphs on tracker plugin
Original Submission

Something went wrong, the follow up content couldn't be loaded

Only formatting have been changed, you should switch to markup to see the changes
Status changed from Under implementation to Under review