Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-58409

Self-XSS in autocomplete element (for example "Tags")

    XMLWordPrintable

Details

    • MOODLE_31_STABLE, MOODLE_32_STABLE, MOODLE_34_STABLE, MOODLE_35_STABLE, MOODLE_36_STABLE
    • MOODLE_34_STABLE, MOODLE_35_STABLE
    • MDL-58409-master_needs_clean_in_autocomplete_element
    • Easy
    • Hide
      1. Create a new activity instance (e.g. Assign) and edit the settings for this module once done.
      2. In the Tags text field under the Tags section, enter:

        <script>alert("XSS!");</script>

        and hit enter

      3. Verify you don't see a browser alert and;
      4. Verify you see the tag created above the field, with the content you entered.
      5. Repeat steps 1-4 for a course tag, using the course edit form.
      Show
      Create a new activity instance (e.g. Assign) and edit the settings for this module once done. In the Tags text field under the Tags section, enter: <script>alert( "XSS!" );</script> and hit enter Verify you don't see a browser alert and; Verify you see the tag created above the field, with the content you entered. Repeat steps 1-4 for a course tag, using the course edit form.

    Description

      I am reporting a XSS security issues in accordance with Bug in Tag feature.

      Tag feature in any pages has XSS vulnerability.

      Here are steps for how to reproduce below.

      (1) Create a new quiz instance, open edit from.

      (2) Enter <script> tag e.g(<script>alert("XSS!");</script>)

      (3) !?

      Attachments

        Issue Links

          has a non-specific relationship to

          Bug - A problem which impairs or prevents Moodle from functioning correctly. MDL-61359 Self-XSS when sending message to another user

          • Critical - Crashes server, loss of data, severe memory leak
          • Closed
          is duplicated by

          Bug - A problem which impairs or prevents Moodle from functioning correctly. MDL-58923 Autocomplete form element does not escape string when adding to the list of tags for the editing user

          • Minor - Minor loss of function where workaround is possible
          • Closed
          Testing discovered

          Bug - A problem which impairs or prevents Moodle from functioning correctly. MDL-63082 Encoding problem with tags saved with special characters

          • Minor - Minor loss of function where workaround is possible
          • Open

          Activity

            People

              davidcarrillo David Carrillo
              yue Takayuki Fuwa
              Jake Dallimore Jake Dallimore
              Eloy Lafuente (stronk7) Eloy Lafuente (stronk7)
              Anna Carissa Sadia Anna Carissa Sadia
              David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo
              Votes:
              1 Vote for this issue
              Watchers:
              11 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:
                10/Sep/18

                Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 30 minutes
                  30m