Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cross-Site Scripting: Reflected #1110

Closed
QiAnXinCodeSafe opened this issue Jul 27, 2020 · 1 comment · Fixed by #1128
Closed

Cross-Site Scripting: Reflected #1110

QiAnXinCodeSafe opened this issue Jul 27, 2020 · 1 comment · Fixed by #1128
Assignees
@wangmingliang-ms

Comments

@QiAnXinCodeSafe
Copy link

azure-maven-plugins/azure-auth-helper/src/main/java/com/microsoft/azure/auth/LocalAuthServer.java

Lines 57 to 67 in 4d8e73c

code = request.getParameter(Constants.CODE);
// handle the error response described at
// https://docs.microsoft.com/en-us/azure/active-directory/develop/v1-protocols-oauth-code#error-response
errorDescription = request.getParameter(Constants.ERROR_DESCRIPTION);
error = request.getParameter(Constants.ERROR);
final boolean isSuccess = StringUtils.isEmpty(error) && StringUtils.isNotEmpty(code);
response.setStatus(HttpServletResponse.SC_OK);
response.setContentType(Constants.CONTENT_TYPE_TEXT_HTML);
try (final PrintWriter writer = response.getWriter()) {
writer.write(isSuccess ? loginSuccessHTMLTemplate : String.format(loginErrorHTMLTemplate, error, errorDescription));

Sending unvalidated data to a web browser can result in the browser executing malicious code.
@wangmingliang-ms
Copy link
Contributor

the error and errorDescription come from Azure's own OAuth server, which should be trustable.

wangmingliang-ms added a commit that referenced this issue Aug 19, 2020
@wangmingliang-ms
[github]#1110: XSS issues in azure-auth-helper
771c921
wangmingliang-ms added a commit that referenced this issue Aug 19, 2020
@wangmingliang-ms
[github]#1110: XSS issues in azure-auth-helper
4ccf4be 
use guava's htmlescaper instead.
wangmingliang-ms added a commit that referenced this issue Aug 19, 2020
@wangmingliang-ms
[github]#1110: XSS issues in azure-auth-helper
2fae287 
add unit test
@wangmingliang-ms wangmingliang-ms self-assigned this Aug 19, 2020
wangmingliang-ms added a commit that referenced this issue Aug 25, 2020
@wangmingliang-ms
[github #1110][devops #1764036]: update version of `azure-auth-helper…
cc85087 
…` in depender
@wangmingliang-ms wangmingliang-ms linked a pull request Aug 25, 2020 that will close this issue
#1110: escape html string to prevent potential XSS issue #1128
Merged
wangmingliang-ms added a commit that referenced this issue Aug 25, 2020
@wangmingliang-ms
[github]#1110: XSS issues in azure-auth-helper;
f065e78 
use `isNotEmpty` instead
wangmingliang-ms added a commit that referenced this issue Aug 25, 2020
@wangmingliang-ms
#1110: escape html string to prevent potential XSS issue (#1128)
09ac842 
* [github]#1110: XSS issues in azure-auth-helper
use guava's htmlescaper.
* [github #1110][devops #1764036]: update version of `azure-auth-helper` in depender
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@wangmingliang-ms wangmingliang-ms

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

#1110: escape html string to prevent potential XSS issue microsoft/azure-maven-plugins
2 participants
@QiAnXinCodeSafe @wangmingliang-ms