fernando/luos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

BUG 9621 Persistent XSS and AJAX Vulnerabilities, Multiple SOLVED

Browse Source 
- It was noticed that no was validated these entry.
- Was validated with htmlentities for both cases.
This commit is contained in:
Marco Antonio Nina
2012-08-29 15:34:57 -04:00
parent 090e5016df
commit 13be93d3c1
3 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
gulliver/methods/propelTableAjax.php
View File

@@ -71,7 +71,7 @@
$fastSearch = get_ajax_value('fastSearch'); $fastSearch = get_ajax_value('fastSearch');
if (isset($fastSearch)) { if (isset($fastSearch)) {
$ntable->fastSearch= urldecode($fastSearch); $ntable->fastSearch= htmlentities(urldecode($fastSearch), ENT_QUOTES, 'UTF-8');
$page = 1; $page = 1;
} }

2
workflow/engine/controllers/main.php
View File

@@ -31,7 +31,7 @@ class Main extends Controller
// setting variables for template // setting variables for template
$this->setVar('logo_company', $this->getCompanyLogo()); $this->setVar('logo_company', $this->getCompanyLogo());
$this->setVar('userfullname', $this->getUserFullName()); $this->setVar('userfullname', htmlentities($this->getUserFullName(), ENT_QUOTES, 'UTF-8') );
$this->setVar('user', isset($_SESSION['USR_USERNAME']) ? $_SESSION['USR_USERNAME'] : ''); $this->setVar('user', isset($_SESSION['USR_USERNAME']) ? $_SESSION['USR_USERNAME'] : '');
$this->setVar('pipe', isset($_SESSION['USR_USERNAME']) ? ' | ' : ''); $this->setVar('pipe', isset($_SESSION['USR_USERNAME']) ? ' | ' : '');
$this->setVar('rolename', $this->getUserRole()); $this->setVar('rolename', $this->getUserRole());

2
workflow/engine/skinEngine/skinEngine.php
View File

@@ -635,7 +635,7 @@ class SkinEngine
$smarty->assign('switch_interface', $switch_interface); $smarty->assign('switch_interface', $switch_interface);
$smarty->assign('switch_interface_label', G::LoadTranslation('ID_SWITCH_INTERFACE')); $smarty->assign('switch_interface_label', G::LoadTranslation('ID_SWITCH_INTERFACE'));
$smarty->assign('userfullname', isset($_SESSION['USR_FULLNAME']) ? $_SESSION['USR_FULLNAME'] : ''); $smarty->assign('userfullname', isset($_SESSION['USR_FULLNAME']) ? htmlentities($_SESSION['USR_FULLNAME'] , ENT_QUOTES, 'UTF-8'): '');
$smarty->assign('user', isset($_SESSION['USR_USERNAME']) ? '(' . $_SESSION['USR_USERNAME'] . ')' : ''); $smarty->assign('user', isset($_SESSION['USR_USERNAME']) ? '(' . $_SESSION['USR_USERNAME'] . ')' : '');
$smarty->assign('rolename', isset($_SESSION['USR_ROLENAME']) ? $_SESSION['USR_ROLENAME'] . '' : ''); $smarty->assign('rolename', isset($_SESSION['USR_ROLENAME']) ? $_SESSION['USR_ROLENAME'] . '' : '');
$smarty->assign('pipe', isset($_SESSION['USR_USERNAME']) ? ' | ' : ''); $smarty->assign('pipe', isset($_SESSION['USR_USERNAME']) ? ' | ' : '');