[jira] [Updated] (SOLR-7920) Thers is a xss issue in schema-browser page of Admin Web UI.

Uwe Schindler (JIRA) Mon, 17 Aug 2015 05:36:08 -0700

     [ 
https://issues.apache.org/jira/browse/SOLR-7920?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Uwe Schindler updated SOLR-7920:
--------------------------------
    Fix Version/s: 5.3

> Thers is a xss issue in schema-browser page of Admin Web UI.
> ------------------------------------------------------------
>
>                 Key: SOLR-7920
>                 URL: https://issues.apache.org/jira/browse/SOLR-7920
>             Project: Solr
>          Issue Type: Bug
>          Components: web gui
>    Affects Versions: 4.9, 4.10.4, 5.2.1
>            Reporter: davidchiu
>            Assignee: Upayavira
>             Fix For: 5.3, 5.4
>
>
> Open Solr Admin Web UI, select a core(such as collection1) and then click 
> "schema-browse",and input a url like 
> "http://127.0.0.1:8983/solr/#/collection1/schema-browser?field=cat=<img src=1 
> onerror=alert(1);>" to the browser address, you will get alert box with "1".
> I changed follow code to void this problem:
> Original code:
>  $( 'option[value="' + params.route_params.path + '"]', 
> related_select_element )
>         .attr( 'selected', 'selected' );
> Changed code:
>  $( 'option[value="' + params.route_params.path.esc() + '"]', 
> related_select_element )
>         .attr( 'selected', 'selected' );



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org
For additional commands, e-mail: dev-h...@lucene.apache.org

[jira] [Updated] (SOLR-7920) Thers is a xss issue in schema-browser page of Admin Web UI.

Reply via email to