Actions
Bug #17698
closed
Bug #17641: Markdown descriptions in directives and groups are evaluated, resulting in Javascript execution
Tooltips in interface tree evaluate scripts
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
Description
Trees in Directives and Active Technique pages display tooltips containing the description of the Technique.
However, this tooltip evaluates everything that is in the description, especially Javascript, that would get executed when hovering over a malicious Technique
For instance, creating a technique with decription <script>alert("bob");</script> and hovering over the technique in directives page or the active technique page shows the alert
Escaping the content of the tooltip fixes the issue
Updated by Nicolas CHARLES over 4 years ago
- Target version changed from 6.0.7 to 5.0.18
Updated by Nicolas CHARLES over 4 years ago
- Related to Bug #14221: we can inject html & javascript in Rudder tables added
Updated by Nicolas CHARLES over 4 years ago
- Status changed from New to In progress
- Assignee set to Nicolas CHARLES
Updated by Nicolas CHARLES over 4 years ago
- Status changed from In progress to Pending technical review
- Assignee changed from Nicolas CHARLES to François ARMAND
- Pull Request set to https://github.com/Normation/rudder/pull/3073
Updated by Nicolas CHARLES over 4 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder|820c89bb746d14e35a9d6a979214eee0cc3619d2.
Updated by Nicolas CHARLES over 4 years ago
- Subject changed from tooltip in jstree evaluate script to Tooltips in interface tree evaluate scripts
- Description updated (diff)
Updated by Vincent MEMBRÉ over 4 years ago
- Status changed from Pending release to Released
Updated by
Actions