[SENTRY-1665] cross-site scripting vulnerability in ConfServlet - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.8.0, 2.0.0
Fix Version/s: 1.8.0, 2.0.0
Component/s: Sentry
Labels:

Description

The ConfServlet class has the following code:

    String format = request.getParameter(FORMAT_PARAM);
    ...
    } else {
      response.sendError(HttpServletResponse.SC_BAD_REQUEST, "Bad format: " + format);
    }

As a result HTTP parameter is directly written to Servlet error page. Echoing this untrusted input allows for a reflected cross site scripting vulnerability. See http://en.wikipedia.org/wiki/Cross-site_scripting for more information.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SENTRY-1665.001.patch
07/Jul/17 15:01
1 kB
Brian Towles
SENTRY-1665.001-sentry-ha-redesign.patch
21/Jun/17 15:29
2 kB
Brian Towles

Issue Links

links to

review board

Activity

People

Assignee:: Brian Towles

Reporter:: Alex Kolbasov

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 15/Mar/17 06:41

Updated:: 24/Jul/17 14:51

Resolved:: 09/Jul/17 19:10