|
Mantis - Piwigo
|
|||||
| Viewing Issue Advanced Details | |||||
|
|
|||||
| ID: | Category: | Severity: | Reproducibility: | Date Submitted: | Last Update: |
| 702 | security | major | always | 2007.06.07 13:17 | 2007.09.20 21:03 |
|
|
|||||
| Reporter: | rub | Platform: | |||
| Assigned To: | rub | OS: | |||
| Priority: | urgent | OS Version: | |||
| Status: | closed | Product Version: | 1.7.0 | ||
| Product Build: | Resolution: | fixed | |||
| Projection: | none | ||||
| ETA: | none | Fixed in Version: | 1.7.1 | ||
| browser: | any | ||||
| Database engine and version: | |||||
| PHP version: | |||||
| Web server: | Apache 1.3.x | ||||
|
|
|||||
| Summary: | 0000702: Code Injection | ||||
| Description: |
Code Injection with picture comment With guest user, it's possible to inject code on author field. Example at moment: http://demo.phpwebgallery.net/picture.php?/106/category/15 [^] http://demo.phpwebgallery.net/picture.php?/128/category/15 [^] |
||||
| Steps To Reproduce: | set <script>alert('Hello World!');</script> as author | ||||
| Additional Information: | |||||
| Relationships | |||||
| Attached Files: | |||||
|
|
|||||
| Issue History | |||||
| Date Modified | Username | Field | Change | ||
| 2007.06.07 13:17 | rub | New Issue | |||
| 2007.06.07 13:17 | rub | browser | => any | ||
| 2007.06.07 13:17 | rub | Web server | => Apache 1.3.x | ||
| 2007.06.07 13:19 | rub | Summary | Code Injection with picture comment => Code Injection | ||
| 2007.06.07 13:19 | rub | Description Updated | |||
| 2007.06.07 13:19 | rub | Steps to Reproduce Updated | |||
| 2007.06.07 13:22 | rub | Status | new => acknowledged | ||
| 2007.06.07 13:39 | rub | Status | acknowledged => assigned | ||
| 2007.06.07 13:39 | rub | Assigned To | => rub | ||
| 2007.06.07 13:45 | rub | Note Added: 0001881 | |||
| 2007.06.07 19:46 | plg | Note Added: 0001882 | |||
| 2007.06.07 19:58 | rub | Note Added: 0001883 | |||
| 2007.06.07 20:51 | rub | Status | assigned => resolved | ||
| 2007.06.07 20:51 | rub | Fixed in Version | => 1.7.1 | ||
| 2007.06.07 20:51 | rub | Resolution | open => fixed | ||
| 2007.06.07 20:51 | rub | Note Added: 0001884 | |||
| 2007.06.07 20:52 | rub | Status | resolved => closed | ||
| 2007.09.20 21:01 | VDigital | Status | closed => feedback | ||
| 2007.09.20 21:01 | VDigital | Resolution | fixed => reopened | ||
| 2007.09.20 21:01 | VDigital | Note Added: 0001987 | |||
| 2007.09.20 21:02 | VDigital | View Status | private => public | ||
| 2007.09.20 21:03 | VDigital | Status | feedback => closed | ||
| 2007.09.20 21:03 | VDigital | Note Added: 0001988 | |||
| 2007.09.20 21:03 | VDigital | Resolution | reopened => fixed | ||
| Notes | |||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||