Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-13407

Security redirect Problem in messageboards Portlet

    Details

      Description

      The redirect in EditDiscussionAction.java is not escaped.
      So you can redirect to wherever you want, even if you configured your redirect domains or ips in the portal.properties File.

      In EditDiscussionAction.java line 61 there is:

      String redirect = ParamUtil.getString(actionRequest, "redirect");

      but it should be instead:

      String redirect = PortalUtil.escapeRedirect(ParamUtil.getString(actionRequest, "redirect"));

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              brian.chan Brian Chan
              Reporter:
              bnielsen Birger Nielsen (Inactive)
              Participants of an Issue:
              Recent user:
              Esther Sanz
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Days since last comment:
                9 years, 21 weeks, 5 days ago

                  Packages

                  Version Package
                  6.1.1 CE GA2
                  6.1.20 EE GA2
                  6.2.0 CE M2