11818: not exploitable XSS - LimeSurvey bugs and feature requests

This bug affects 1 person(s).

252

ID	Project	Category	View Status	Date Submitted	Last Update

11818	Bug reports	Security	public	2016-10-19 14:00	2016-10-21 10:41

Reporter	niph	Assigned To	c_schmitz
Priority	none	Severity	minor
Status	closed	Resolution	fixed
Product Version	2.54
Fixed in Version	2.55.x

Summary	11818: not exploitable XSS
Description	Hey while reviewing your code I encountered the following issues which are fortunately not exploitable. Anyway I would recommend to implement some sanitization at the following resources. limesurvey/application/views/admin/survey/Question/massive_actions/_set_questions_other.php 12: <input type="hidden" name="sid" value="<?php echo $_GET['surveyid']; ?>" class="custom-data"/> limesurvey/application/views/admin/survey/Question/massive_actions/_set_css_class.php 12: <input type="hidden" name="sid" value="<?php echo $_GET['surveyid']; ?>" class="custom-data"/> limesurvey/application/views/admin/survey/Question/massive_actions/_set_statistics_options.php 59: <input type="hidden" name="sid" value="<?php echo $_GET['surveyid']; ?>" class="custom-data"/> cheers niph
Tags	No tags attached.

Bug heat	252
Complete LimeSurvey version number (& build)	limesurvey2.54.4+161018.
I will donate to the project if issue is resolved	No
Browser
Database type & version	none
Server OS (if known)	none
Webserver software & version (if known)	none
PHP Version	none

User List	There are no users monitoring this issue.

c_schmitz 2016-10-19 17:29 administrator ~41489	Thank you!

c_schmitz 2016-10-20 14:48 administrator ~41498	Fix committed to master branch: http://bugs.limesurvey.org/plugin.php?page=Source/view&id=21115

c_schmitz 2016-10-21 10:41 administrator ~41516	Version 2.55 released

LimeSurvey: master 5443235d 2016-10-19 19:27 c_schmitz Details Diff	Fixed issue 11818: Non-sanitized output in massive actions for question list	Affected Issues 11818
	mod - application/views/admin/survey/Question/massive_actions/_set_css_class.php	Diff File
	mod - application/views/admin/survey/Question/massive_actions/_set_questions_other.php	Diff File
	mod - application/views/admin/survey/Question/massive_actions/_set_statistics_options.php	Diff File

Date Modified	Username	Field	Change
2016-10-19 14:00	niph	New Issue
2016-10-19 17:27	c_schmitz	Assigned To	=> c_schmitz
2016-10-19 17:27	c_schmitz	Status	new => resolved
2016-10-19 17:27	c_schmitz	Resolution	open => fixed
2016-10-19 17:27	c_schmitz	Fixed in Version	=> 2.55.x
2016-10-19 17:29	c_schmitz	Note Added: 41489
2016-10-20 14:48	c_schmitz	Changeset attached	=> LimeSurvey master 5443235d
2016-10-20 14:48	c_schmitz	Note Added: 41498
2016-10-21 10:41	c_schmitz	Note Added: 41516
2016-10-21 10:41	c_schmitz	Status	resolved => closed