[
https://issues.apache.org/jira/browse/DELTASPIKE-1307?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16299906#comment-16299906
]
ASF subversion and git services commented on DELTASPIKE-1307:
-------------------------------------------------------------
Commit 72e607f3be66c30c72b32c24b44e9deaa8e54608 in deltaspike's branch
refs/heads/master from [~struberg]
[ https://git-wip-us.apache.org/repos/asf?p=deltaspike.git;h=72e607f ]
DELTASPIKE-1307 sanitise windowId against JavaScript injection
> Deltaspike JSF: XSS WindowIdHtmlRenderer.java
> ---------------------------------------------
>
> Key: DELTASPIKE-1307
> URL: https://issues.apache.org/jira/browse/DELTASPIKE-1307
> Project: DeltaSpike
> Issue Type: Bug
> Components: JSF-Module
> Affects Versions: 1.8.0
> Environment: any
> Reporter: md
> Assignee: Mark Struberg
> Priority: Blocker
> Labels: security
>
> 10 chars ough to be enough for XSS.
> Try escaping your variables.
> https://github.com/apache/deltaspike/blob/master/deltaspike/modules/jsf/impl/src/main/java/org/apache/deltaspike/jsf/impl/component/window/WindowIdHtmlRenderer.java
> Line 80
> PoC
> dswid='-open()-'
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
