GithubHelp home page GithubHelp logo

Comments (7)

cviecco avatar cviecco commented on May 19, 2024

benmap-brex. I am unable to follow how this can happen on default configuration. (no logs exposed). Can you please elaborate?

from keymaster.

benmap-brex avatar benmap-brex commented on May 19, 2024

Hey, not sure what the default config is, but usernames are not HTML encoded when reflected into the /logs endpoint on port 6920. If an attacker POSTs to the login endpoint with a username containing HTML it will show up in the logs, as shown in the screenshot above.

from keymaster.

cviecco avatar cviecco commented on May 19, 2024

I agree with you... @rgooch : this is what happens when templates are not used. Since this happens only when public logs are enabled (non default) I am accepting this as bug, but making this a medium issue.

from keymaster.

cviecco avatar cviecco commented on May 19, 2024

I updated the impact and accepted this as bug

from keymaster.

benmap-brex avatar benmap-brex commented on May 19, 2024

Thanks for checking into this! Again, didn't know it wasn't a default config 👍

from keymaster.

rgooch avatar rgooch commented on May 19, 2024

Given this was exposed with a non-default configuration, is there anything we should/can do here?
@cviecco: I'm not sure what the relevance of templates vs. not using templates is. The /log endpoints dump the contents of the log files and the in-memory log buffer. I don't think the logs should be processed in any way by this endpoint.

from keymaster.

rgooch avatar rgooch commented on May 19, 2024

I've merged code (Cloud-Foundations/Dominator#49) which escapes HTML sequences in the logs display. Anyone building from HEAD will have this fix. I think that completes the source code side of this, so closing. Please re-open if you disagree.

from keymaster.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.