[Tickets #6906] Re: The parameter 'object[name]' is not sanitized in the page '/horde/turba/add.php'
bugs at horde.org
bugs at horde.org
Fri Jun 13 09:00:01 UTC 2008
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/6906
-----------------------------------------------------------------------
Ticket | 6906
Updated By | nicolas.kerschenbaum at xmcopartners.com
Summary | The parameter 'object[name]' is not sanitized
in the page
| '/horde/turba/add.php'
Queue | Turba
Version | 2.1.7
Type | Bug
State | Feedback
Priority | 2. Medium
Milestone |
Patch |
Owners |
+New Attachment | xss.png
-----------------------------------------------------------------------
nicolas.kerschenbaum at xmcopartners.com (2008-06-13 04:59) wrote:
1) I add a contact (page: '/horde/turba/add.php') with the name :
Jean Dupont<script>alert('XMCO');</script>
http://img258.imageshack.us/img258/3708/formao0.png
2) I see my contact list (page:
'/horde/services/obrowser/?path=turba/localsql:heremylogin')
and there is a XSS
http://img246.imageshack.us/img246/5604/xsswt6.png
So, if this security bug is fixed, which version is not vulnerable ?
Regards
More information about the bugs
mailing list