[
https://issues.apache.org/jira/browse/SOLR-7949?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14706572#comment-14706572
]
Jan Høydahl commented on SOLR-7949:
-----------------------------------
[~davidchiu] thanks for your bug reports. I don't know if you do all your
research in FireBug or if you download the full Solr source code and build
yourself. If you do the latter, please consider uploading your findings as a
patch file. See more in https://wiki.apache.org/solr/HowToContribute
> Thers is a xss issue in plugins/stats page of Admin Web UI.
> -----------------------------------------------------------
>
> Key: SOLR-7949
> URL: https://issues.apache.org/jira/browse/SOLR-7949
> Project: Solr
> Issue Type: Bug
> Components: web gui
> Affects Versions: 4.9, 4.10.4, 5.2.1
> Reporter: davidchiu
> Assignee: Jan Høydahl
> Fix For: Trunk, 5.4, 5.3.1
>
>
> Open Solr Admin Web UI, select a core(such as collection1) and then click
> "Plugins/stats",and type a url like
> "http://127.0.0.1:8983/solr/#/collection1/plugins/cache?entry=score=<img
> src=1 onerror=alert(1);> to the browser address, you will get alert box with
> "1".
> I changed follow code to resolve this problem:
> The Original code:
> for( var i = 0; i < entry_count; i++ )
> {
> $( 'a[data-bean="' + entries[i] + '"]', frame_element )
> .parent().addClass( 'expanded' );
> }
> The Changed code:
> for( var i = 0; i < entry_count; i++ )
> {
> $( 'a[data-bean="' + entries[i].esc() + '"]', frame_element )
> .parent().addClass( 'expanded' );
> }
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
