Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.
Bug List: (1 of 1) First Last Prev Next   Show last search results
Bug 254575 - [Webapp][Security] XSS injection security issue
Summary: [Webapp][Security] XSS injection security issue
Status: RESOLVED DUPLICATE of bug 223980
Alias: None
Product: Platform
Classification: Eclipse Project
Component: User Assistance (show other bugs)
Version: 3.0.1   Edit
Hardware: PC Windows XP
: P3 normal (vote)
Target Milestone: ---   Edit
Assignee: platform-ua-inbox CLA
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-11-07 05:03 EST by Yi Yan Zhou CLA
Modified: 2010-12-07 17:09 EST (History)
4 users (show)

See Also:

Attachments
screen shot for case 1 URL in firefox (65.34 KB, image/jpeg)
2008-11-07 05:06 EST, Yi Yan Zhou CLA 		no flags Details
html source for case 1 inject in firefox (39.93 KB, image/jpeg)
2008-11-07 05:06 EST, Yi Yan Zhou CLA 		no flags Details
screen shot for case 2 url injection in IE (53.77 KB, image/jpeg)
2008-11-07 05:07 EST, Yi Yan Zhou CLA 		no flags Details
html source for case 2 inject in IE (25.50 KB, image/jpeg)
2008-11-07 05:07 EST, Yi Yan Zhou CLA 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Yi Yan Zhou CLA 2008-11-07 05:03:33 EST 
Build ID: M200409161125

Steps To Reproduce:
1.start the EHS as help system
2.Visit in Firefox: http://localhost:9080/iehs/advanced/workingSet.jsp?operation=edit&workingSet=>%22%27><img%20src%3d%22javascript:alert(94893)%22>
3.See url_inject_1.jpg and src_inject_1.jpg to see the injected script
4.Visit in IE: http://localhost:9080/iehs/advanced/workingSetManager.jsp?operation=add&workingSet=>%22%27><img%20src%3d%22javascript:alert(93775)%22>&hrefs=%2Fcom.ibm.wp.admin.help%2Fh_wp_admin.xml&oldName=
5.See url_inject_2.jpg and src_inject_2.jpg to see the injected script

More information:
Comment 1 Yi Yan Zhou CLA 2008-11-07 05:06:18 EST 
Created attachment 117299 [details]
screen shot for case 1 URL in firefox
Comment 2 Yi Yan Zhou CLA 2008-11-07 05:06:56 EST 
Created attachment 117300 [details]
html source for case 1 inject in firefox
Comment 3 Yi Yan Zhou CLA 2008-11-07 05:07:32 EST 
Created attachment 117301 [details]
screen shot for case 2 url injection in IE
Comment 4 Yi Yan Zhou CLA 2008-11-07 05:07:59 EST 
Created attachment 117302 [details]
html source for case 2 inject in IE
Comment 5 Chris Goldthorpe CLA 2008-11-07 14:36:31 EST 
This is a duplicate of Bug 223980 "[Webapp] Unencoded strings inserted into JavaScript" which has been fixed. See that bug for a patch.

*** This bug has been marked as a duplicate of bug 223980 ***
Bug List: (1 of 1) First Last Prev Next   Show last search results