[
https://issues.apache.org/jira/browse/SOLR-9790?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15685654#comment-15685654
]
liuyang commented on SOLR-9790:
-------------------------------
In schema-browser.js
Original code:
navigation_content += '<dd class="field"><a href="' + href + '">' +
navigation_data.fields[i] + '</a></dd>' + "\n";
Changed code:
navigation_content += '<dd class="field"><a href="' + href + '">' +
navigation_data.fields[i].esc() + '</a></dd>' + "\n";
> Thers is a xss issue in schema-browser page of old.html
> -------------------------------------------------------
>
> Key: SOLR-9790
> URL: https://issues.apache.org/jira/browse/SOLR-9790
> Project: Solr
> Issue Type: Bug
> Security Level: Public(Default Security Level. Issues are Public)
> Components: web gui
> Affects Versions: 6.2.1
> Reporter: liuyang
> Priority: Minor
>
> In Solr Admin Web UI click "original UI", and then input a url like
> "https://127.0.0.1:8986/solr/old.html#/testxss_shard1_replica1/schema-browser?field=<script>alert(123456)</script>;"
> to the browser address, you will get alert box with "123456".
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
