[MGNLSTK-1091] Cross Site Scripting Vulnerability (XSS) in pagination Created: 08/Feb/13  Updated: 08/Feb/13  Resolved: 08/Feb/13

Status: Closed
Project: Magnolia Standard Templating Kit (closed)
Component/s: paragraphs
Affects Version/s: 1.4.4
Fix Version/s: 1.4.8

Type: Bug Priority: Critical
Reporter: Roman Kovařík Assignee: Roman Kovařík
Resolution: Fixed Votes: 0
Labels: stk, xss
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Cloners
clones MGNLSTK-791 Cross Site Scripting Vulnerability (X... Closed
Template:
Acceptance criteria:
Empty

 Description   

The pagination in the STK as used in, among others, the newsoverview and eventoverview is vulnerable to cross site scripting. The hrefs of page hyperlinks contain the original URL with an added currentPage parameter. The original URL can have malicious scripts syntax which will be executed when the page hyperlinks are rendered.

An example can be found on the Magnolia demo site's newsoverview page if you define a paging for the newsoverview paragraph:
http://demo.magnolia-cms.com/demo-project/news-and-events/news-overview.html?currentPage=2&xss="><script>alert('XSS');</script>

A live example is on a website we made:
http://www.wetenschap24.nl/nieuws/artikelen.html?currentPage=3&xss="><script>alert('XSS');</script>


Generated at Mon Feb 12 07:33:18 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.