6.0.0-git
2019-03-21

[#2830] No validation of data in function getFormData resulit in XSS vulnerability
Summary No validation of data in function getFormData resulit in XSS vulnerability
Queue Horde Base
Queue Version 2.2.8
Type Bug
State Resolved
Priority 2. Medium
Owners Horde Developers (at)
Requester chuanwee (at) gmail (dot) com
Created 2005-10-23 (4897 days ago)
Due
Updated 2005-11-13 (4876 days ago)
Assigned 2005-10-27 (4893 days ago)
Resolved 2005-11-13 (4876 days ago)
Milestone
Patch No

History
2005-11-13 12:11:48 Jan Schneider Comment #3
State ⇒ Resolved
Reply to this comment
This has been fixed in Horde 2.2.9.
2005-10-27 07:21:37 Jan Schneider Comment #2 (Private)
Assigned to Horde DevelopersHorde Developers
State ⇒ Assigned
[Hidden]
2005-10-23 14:20:34 chuanwee (at) gmail (dot) com Comment #1
Type ⇒ Bug
State ⇒ Unconfirmed
Priority ⇒ 2. Medium
Summary ⇒ No validation of data in function getFormData resulit in XSS vulnerability
Queue ⇒ Horde Base
Reply to this comment
The function in lib/Horde.php getFormData() does not validate input 
data hence creating a cross-site scripting vulnerability.



By calling http://mail/css.php/css.php?app=......   this cause the 
input data to be send back to the user's browser in lib/Registry.php 
function applicationFilePath

when the app is not found.

Horde::fatal(new PEAR_Error(sprintf(_("'%s' is not configured in the 
Horde Registry."), $app)), __FILE__, __LINE__);



A temporary workaround to remove '%s' works for me. Hope there is a 
more thorough solution.



cheers.

ChuanWee

Saved Queries