Item405: ORIGURL used in template login used for example for reset password is an XSS attach vector
Priority: Urgent
Current State: Closed
Released In: 1.0.0
Target Release: patch
Applies To: Engine
Component:
Branches:
ORIGURL used in template login used for example for reset password is an XSS attach vector
http://somedomain.com/foswiki/bin/login/System/ResetPassword?origurl=/System/ResetPassword%3fusername%3d%22%3Cscript%3Ealert(%273y3%200wn%20j00%20TWIKI%27)%3C/script%3E%3brefresh%3don
Spotted by
MichaelDaum. Brilliant.
Fixed by
KennethLavrsen
PS. yes this also applies to TWiki 4.2.4
i forwarded this report to
twiki-security@lists.sourceforge.net on 7 dec 2008