ImgTag is vulnerable on XSS attacks

Question

ImgTag is vulnerable on XSS attacks

GoogleCodeExporter opened this issue 8 years ago · comments

Google Code Exporter commented 8 years ago

What steps will reproduce the problem?
ImgTag class doesn't validate the url.
Here are some examples of IMG xss attacks http://ha.ckers.org/xss.html

What is the expected output? What do you see instead?


What version of the product are you using? On what operating system?
1.1.5dev

Please provide any additional information below.

Original issue reported on code.google.com by przemek...@gmail.com on 19 Feb 2009 at 12:55

Google Code Exporter · Answer 1 · Tue Dec 22 2015 21:40:22 GMT+0800 (China Standard Time)

How should this be handled?

Original comment by markree...@gmail.com on 10 Jul 2010 at 3:00

Google Code Exporter · Answer 2 · Tue Dec 22 2015 21:40:22 GMT+0800 (China Standard Time)

Ensure that the URL is either a http: or https: ? I'm not sure this mitigates 
all attacks, but at least we ensure it cannot be a javascript: URL.

Original comment by studio%b...@gtempaccount.com on 29 Dec 2010 at 12:57

Google Code Exporter · Answer 3 · Tue Dec 22 2015 21:40:22 GMT+0800 (China Standard Time)

Fixed in trunk

Original comment by willmcgugan on 30 Dec 2010 at 11:46

Changed state: Fixed