Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pages select function vunerability #533

Open
Rmacar opened this issue Jul 31, 2019 · 1 comment
Open

Pages select function vunerability #533

Rmacar opened this issue Jul 31, 2019 · 1 comment

Comments

@Rmacar
Copy link

Rmacar commented Jul 31, 2019
edited
Loading

There's a vulnerability in the select function within the pages controller.

The filter variable takes in any input that is posted to it without sanitising the input, this led to someone managing to post files onto our server and run functions from them.

If you look at line 897 in the pages controller you will see what I mean.

It also doesn't verify if the user is logged in at all, so is wide open for any user to access without needing to know a login
@daylightstudio
Copy link
Owner

Thanks for the report. We'll change to require access for now. Do you have an example you can directly email me (dave@bydaylight.com)?

daylightstudio pushed a commit that referenced this issue Jul 31, 2019
fix: issue #533 not requiring login to select url and potential secur…
48b546f 
…ity problem
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@daylightstudio @Rmacar