[TYPO3-core] RFC: #13133: File list cancel button does not respect returnUrl

Georg Ringer mail at ringerge.org
Wed Jan 6 13:13:46 CET 2010

Previous message: [TYPO3-core] RFC: #13133: File list cancel button does not respect returnUrl
Next message: [TYPO3-core] RFC: #13133: File list cancel button does not respect returnUrl
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am 02.01.2010 15:58, schrieb Steffen Kamper:
> Solution:
> When returnUrl exist make the redirect.

-1 from me as member of the Security Team because this introduces XSS!

PoC would be
&returnUrl=javascript:alert(123)

Georg

Previous message: [TYPO3-core] RFC: #13133: File list cancel button does not respect returnUrl
Next message: [TYPO3-core] RFC: #13133: File list cancel button does not respect returnUrl
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the TYPO3-team-core mailing list