[FACES-1917] Security vulnerability with _jsfBridgeViewId, _facesViewIdRender, and _facesViewIdResource URL parameter values - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: liferay-faces-3.0.0-legacy-ga1, liferay-faces-3.0.1-legacy-ga2, liferay-faces-3.0.2-legacy-ga3, liferay-faces-3.0.3-legacy-ga4, liferay-faces-3.0.4-legacy-ga5, liferay-faces-3.0.0-ga1, liferay-faces-3.0.1-ga2, liferay-faces-3.0.2-ga3, liferay-faces-3.0.3-ga4, liferay-faces-3.0.4-ga5, liferay-faces-3.1.0-ga1, liferay-faces-3.1.1-ga2, liferay-faces-3.1.2-ga3, liferay-faces-3.1.3-ga4, liferay-faces-3.1.4-ga5, liferay-faces-3.2.4-ga5, liferay-faces-4.2.5-ga6
Fix Version/s: liferay-faces-3.0.5-legacy-ga6, liferay-faces-3.0.5-ga6, liferay-faces-3.1.5-ga6, liferay-faces-3.2.5-ga6, liferay-faces-4.2.5-ga6
Component/s: Liferay Faces Bridge Impl / Demos / Tests
Labels:
None

Description

Liferay Faces Bridge has a security vulnerability in which the _jsfBridgeViewId, _facesViewIdRender, and _facesViewIdResource request parameter values are not restricted to valid filename characters.

Attachments

Activity

People

Assignee:: Neil Griffin

Reporter:: Neil Griffin

Participants of an Issue:: Joerg Mueller, Neil Griffin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 15/Apr/14 10:51 AM

Updated:: 10/Aug/15 12:46 PM

Resolved:: 14/May/14 8:09 AM

Packages

Version	Package
liferay-faces-3.0.5-legacy-ga6
liferay-faces-3.0.5-ga6
liferay-faces-3.1.5-ga6
liferay-faces-3.2.5-ga6
liferay-faces-4.2.5-ga6