•  
      request #10849 XSS in reference tooltips
    Infos
    #10849
    Thomas Gerbet (tgerbet)
    2017-12-11 13:11
    2017-11-23 15:59
    11077
    Details
    XSS in reference tooltips

    XSS can injected in the reference tooltips.

    Impact

    An attacker could use this vulnerability to force a victim to execute uncontrolled code.
    CVSSv3 score: 5.4 (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)

    Exploitation

    Create a release in a package named like <img src=a onerror=alert(1)> and reference this release somewhere else with a cross ref. Going hover the cross ref will trigger the XSS.

    References

    CWE 79
    OWASP Cross-site Scripting

    Other
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Empty
    Closed
    2017-11-28
    Attachments
    Empty
    References

    Follow-ups

    User avatar
    Integrated into Tuleap 9.14.99.124

    • Status changed from Under review to Closed
    • Connected artifacts
    • Close date set to 2017-11-28