mirror of
https://github.com/drwetter/testssl.sh.git
synced 2026-07-14 02:57:39 +02:00
Merge pull request #3092 from ericcgu/fix/3090-html-xss-pr-url-3.2
Fix stored XSS in HTML report via unescaped Location: header (#3090)
This commit is contained in:
@@ -1,6 +1,10 @@
|
||||
|
||||
## Change Log
|
||||
|
||||
### Security fixes in 3.2.x
|
||||
|
||||
* Security fix: HTML-escape URLs in the HTML report to prevent stored XSS from a server-controlled `Location:` header (#3090)
|
||||
|
||||
### Features implemented / improvements in 3.2
|
||||
|
||||
* Rating (SSL Labs), as of 3.2.2 version 2009r
|
||||
|
||||
@@ -68,6 +68,9 @@ Full contribution, see git log.
|
||||
* Christian Dresen
|
||||
- Dockerfile
|
||||
|
||||
* Eric Gu
|
||||
- HTML report XSS fix (escape server-controlled URLs, #3090)
|
||||
|
||||
* enxio
|
||||
- support for TN3270/telnet STARTTLS
|
||||
|
||||
|
||||
+2
-2
@@ -739,8 +739,8 @@ tmln_fixme() { tmln_warning "Fixme: $1"; }
|
||||
pr_fixme() { pr_warning "Fixme: $1"; }
|
||||
prln_fixme() { prln_warning "Fixme: $1"; }
|
||||
|
||||
pr_url() { tm_out "$1"; html_out "<a href=\"$1\" style=\"color:black;text-decoration:none;\">$1</a>"; }
|
||||
pr_boldurl() { tm_bold "$1"; html_out "<a href=\"$1\" style=\"font-weight:bold;color:black;text-decoration:none;\">$1</a>"; }
|
||||
pr_url() { tm_out "$1"; html_out "<a href=\"$(html_reserved "$1")\" style=\"color:black;text-decoration:none;\">$(html_reserved "$1")</a>"; }
|
||||
pr_boldurl() { tm_bold "$1"; html_out "<a href=\"$(html_reserved "$1")\" style=\"font-weight:bold;color:black;text-decoration:none;\">$(html_reserved "$1")</a>"; }
|
||||
|
||||
### color switcher (see e.g. https://linuxtidbits.wordpress.com/2008/08/11/output-color-on-bash-scripts/
|
||||
### https://www.tldp.org/HOWTO/Bash-Prompt-HOWTO/x405.html
|
||||
|
||||
Reference in New Issue
Block a user