Fix XSS in openid selector. Thanks, Raghav Bisht.

2015-03-27 12:17:39 -04:00 · 2015-03-27 12:17:39 -04:00 · 18dfba868f
parent 2940fe5334
commit 18dfba868f
3 changed files with 8 additions and 1 deletions
--- a/debian/changelog
+++ b/debian/changelog
@ -13,6 +13,9 @@ ikiwiki (3.20150108) UNRELEASED; urgency=medium
  * t/inline.t: accept translations of "Add a new post titled:"
    (Closes: #779365)

+  [ Joey Hess ]
+  * Fix XSS in openid selector. Thanks, Raghav Bisht.
+
 -- Joey Hess <id@joeyh.name>  Sat, 24 Jan 2015 23:59:20 -0400

 ikiwiki (3.20150107) experimental; urgency=medium
--- a/doc/bugs/XSS_Alert...333333.html
+++ b/doc/bugs/XSS_Alert...333333.html
@ -23,3 +23,7 @@ Thank You...!!
 Your Faithfully,
 Raghav Bisht
 raghav007bisht@gmail.com
+
+> Thanks Raghav for reporting this issue. I've fixed it in ikiwiki.
+> 
+> --[[Joey]] 
--- a/templates/openid-selector.tmpl
+++ b/templates/openid-selector.tmpl
@ -23,7 +23,7 @@ $(document).ready(function() {
 		</div>
 		<div id="openid_input_area">
 			<label for="openid_identifier" class="block">Enter your OpenID:</label>
-			<input id="openid_identifier" name="openid_identifier" type="text" value="<TMPL_VAR OPENID_URL>"/>
+			<input id="openid_identifier" name="openid_identifier" type="text" value="<TMPL_VAR ESCAPE=HTML OPENID_URL>"/>
 			<input id="openid_submit" type="submit" value="Login"/>
 		</div>
 		<TMPL_IF OPENID_ERROR>