[jira] [Commented] (SOLR-7920) Thers is a xss issue in schema-browser page of Admin Web UI.

[ASF subversion and git services (JIRA)]

    [ 
https://issues.apache.org/jira/browse/SOLR-7920?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14698829#comment-14698829
 ] 

ASF subversion and git services commented on SOLR-7920:
-------------------------------------------------------

Commit 1696161 from [~upayavira] in branch 'dev/trunk'
[ https://svn.apache.org/r1696161 ]

SOLR-7920 XSS issue in old schema-browser page

> Thers is a xss issue in schema-browser page of Admin Web UI.
> ------------------------------------------------------------
>
>                 Key: SOLR-7920
>                 URL: https://issues.apache.org/jira/browse/SOLR-7920
>             Project: Solr
>          Issue Type: Bug
>          Components: web gui
>    Affects Versions: 4.9, 4.10.4, 5.2.1
>            Reporter: davidchiu
>            Assignee: Upayavira
>
> Open Solr Admin Web UI, select a core(such as collection1) and then click 
> "schema-browse",and input a url like 
> "http://127.0.0.1:8983/solr/#/collection1/schema-browser?field=cat=<img src=1 
> onerror=alert(1);>" to the browser address, you will get alert box with "1".
> I changed follow code to void this problem:
> Original code:
>  $( 'option[value="' + params.route_params.path + '"]', 
> related_select_element )
>         .attr( 'selected', 'selected' );
> Changed code:
>  $( 'option[value="' + params.route_params.path.esc() + '"]', 
> related_select_element )
>         .attr( 'selected', 'selected' );



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org
For additional commands, e-mail: dev-h...@lucene.apache.org