6.0.0-alpha12
6/9/25

[#2830] No validation of data in function getFormData resulit in XSS vulnerability
Summary No validation of data in function getFormData resulit in XSS vulnerability
Queue Horde Base
Queue Version 2.2.8
Type Bug
State Resolved
Priority 2. Medium
Owners Horde Developers (at)
Requester chuanwee (at) gmail (dot) com
Created 10/23/2005 (7169 days ago)
Due
Updated 11/13/2005 (7148 days ago)
Assigned 10/27/2005 (7165 days ago)
Resolved 11/13/2005 (7148 days ago)
Github Issue Link
Github Pull Request
Milestone
Patch No

History
11/13/2005 12:11:48 PM Jan Schneider Comment #3
State ⇒ Resolved
Reply to this comment
This has been fixed in Horde 2.2.9.
10/27/2005 07:21:37 AM Jan Schneider Comment #2 (Private)
Assigned to Horde DevelopersHorde Developers
State ⇒ Assigned
[Hidden]
10/23/2005 02:20:34 PM chuanwee (at) gmail (dot) com Comment #1
State ⇒ Unconfirmed
Priority ⇒ 2. Medium
Type ⇒ Bug
Summary ⇒ No validation of data in function getFormData resulit in XSS vulnerability
Queue ⇒ Horde Base
Reply to this comment
The function in lib/Horde.php getFormData() does not validate input 
data hence creating a cross-site scripting vulnerability.



By calling http://mail/css.php/css.php?app=......   this cause the 
input data to be send back to the user's browser in lib/Registry.php 
function applicationFilePath

when the app is not found.

Horde::fatal(new PEAR_Error(sprintf(_("'%s' is not configured in the 
Horde Registry."), $app)), __FILE__, __LINE__);



A temporary workaround to remove '%s' works for me. Hope there is a 
more thorough solution.



cheers.

ChuanWee

Saved Queries