Skip to main content

Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

    •  
      request #39689 XSS in the HTML mail content of the cross reference field
    Actions
    Infos
    #39689
    Thomas Gerbet (tgerbet)
    2024-10-14 09:37
    2024-09-17 15:40
    41393
    Details
    XSS in the HTML mail content of the cross reference field

    Content of cross reference field is not properly escaped in mail notifications.

    Impact

    A site administrator could create an artifact link type with a forward label allowing to execute uncontrolled code (or at least achieve content injection) in a mail client.

    CVSSv3.1 score: 4.8 (CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:L)

    References

    CWE 79
    OWASP Cross-site Scripting
    CVE-2024-46980

    Trackers
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2024-09-17
    Attachments
    Empty
    References
    Referencing request #39689

    Git commit

    tuleap/tuleap/stable

    fix: request #39689 XSS in the HTML mail content of the cross reference field dd94a79998
    User avatar Thomas Gerbet (tgerbet) , 2024-09-17 15:45
    Merge commit 'refs/changes/46/31946/1' of ssh://gerrit.tuleap.net:29418/tuleap into HEAD 03384a572d
    User avatar Nicolas Terray (nterray) , 2024-09-17 17:15
    Referenced by request #39689

    Artifact Tracker v5

    rel #37898 16.0

    Other

    gerrit #31946
    Display settings

    Follow-ups

    User avatar
    Thomas Gerbet (tgerbet)2024-09-18 10:24

    CVE-2024-46980 has been assigned to this issue.

    • Original Submission
      Something went wrong, the follow up content couldn't be loaded
      Only formatting have been changed, you should switch to markup to see the changes