Skip to content

Commit

Permalink
Bugfix: XSS (reflected) by invalid email address response
Browse files Browse the repository at this point in the history 
Reported by ZenalArifin
  • Loading branch information
@GaryAllan
GaryAllan committed Feb 3, 2023
1 parent 3df854d commit 8fbf87e
Show file tree
Hide file tree
Showing 3 changed files with 3 additions and 2 deletions.
2 changes: 1 addition & 1 deletion app/subnets/addresses/mail-notify-check.php
View file
Expand Up @@ -21,7 +21,7 @@
# verify each recipient
foreach (explode(",", $_POST['recipients']) as $rec) {
if(!filter_var(trim($rec), FILTER_VALIDATE_EMAIL)) {
$Result->show("danger", _("Invalid email address")." - ".$rec, true);
$Result->show("danger", _("Invalid email address")." - ".escape_input($rec), true);
}
}
# strip html tags
Expand Down
2 changes: 1 addition & 1 deletion app/tools/temp-shares/edit-result.php
View file
Expand Up @@ -27,7 +27,7 @@
# verify each recipient
if(strlen($_POST['email'])>0) {
foreach (explode(",", $_POST['email']) as $rec) {
if(!filter_var(trim($rec), FILTER_VALIDATE_EMAIL)) { $Result->show("danger", _("Invalid email address")." - ".$rec, true); }
if(!filter_var(trim($rec), FILTER_VALIDATE_EMAIL)) { $Result->show("danger", _("Invalid email address")." - ".escape_input($rec), true); }
}
}

Expand Down
1 change: 1 addition & 0 deletions misc/CHANGELOG
View file
Expand Up @@ -3,6 +3,7 @@
Security Fixes:
----------------------------
+ XSS (reflected) in 'bw-calulator-result.php';
+ XSS (reflected) by invalid email address response;
+ Restrict find_full_subnets.php to CLI;

== 1.5.0
Expand Down

0 comments on commit 8fbf87e

Please sign in to comment.