Potential Security Issue

[WB]

Chuck:

Can you comment on:

Secunia RP Advisory

Does that impact standalone installs as well? Versions 3.x as well as 4.x?

Thank you.

[Chuck S]

Not really sure there is no information on what they say the issue is

I am not sure why they classify the date field as a cross site security issue. This is not a field users in anyway input data too. It is only used internally by the program to enter the date a product or review is uploaded. It can only be an integer and is defined totally in the program by this line

Cross-site scripting - Wikipedia, the free encyclopedia

I would like to see examples of what they mean here. The date field is filled in by a line in the software not an external field

Code:

Content visible to verified customers only.

[Chuck S]

I am further reading on this they say date passed is not sanatized on showproduct

You can surely add date to the code in showproduct.php

Code:

Content visible to verified customers only.

[WB]

Quote:

Originally Posted by Chuck S

Not really sure there is no information on what they say the issue is

I am not sure why they classify the date field as a cross site security issue. This is not a field users in anyway input data too.

On page two of the secunia advisory, there's a link to the original advisory. That has some samples of using date to show the document cookie, hence the XSS designation.

One of their examples is:

http://www.techimo.com/reviews/showproduct.php?product=473&cat=24&date="><script>alert(document.cookie);</script>

which shows the cookie.

[Chuck S]

Just do what is posted in my last post should take care of that

[Chuck S]

There example code does not seem to do anything or allow anything on my site but no worries adding the date to the typecase function makes sure it has to be an integer.

[WB]

Thanks.

We'll make that change.

[Chuck S]

Not a problem at all enjoy your day.