Roundup Tracker - Issues

Message4325

Author om
Recipients om
Date 2011-07-05.11:47:10
Message-id <1309866431.27.0.371880231492.issue2550711@psf.upfronthosting.co.za>
In-reply-to
The content of action_name is not encoded before displaying an error
message.

Example:
/support/issue1?@action="><script>alert(1)</script>

The issue is in the following line from cgi/client.py:
raise ValueError('No such action "%s"'%action_name)
History
Date User Action Args
2011-07-05 11:47:11omsetrecipients: + om
2011-07-05 11:47:11omsetmessageid: <1309866431.27.0.371880231492.issue2550711@psf.upfronthosting.co.za>
2011-07-05 11:47:11omlinkissue2550711 messages
2011-07-05 11:47:10omcreate