Headline
CVE-2022-4587: Fix XSS on login page (OBB-1146814) · OpencachingDeutschland/oc-server3@3296ebd
A vulnerability, which was classified as problematic, has been found in Opencaching Deutschland oc-server3. This issue affects some unknown processing of the file htdocs/templates2/ocstyle/login.tpl of the component Login Page. The manipulation of the argument username leads to cross site scripting. The attack may be initiated remotely. The name of the patch is 3296ebd61e7fe49e93b5755d5d7766d6e94a7667. It is recommended to apply a patch to fix this issue. The identifier VDB-216173 was assigned to this vulnerability.
Skip to content
Sign up
Actions
Automate any workflow
Packages
Host and manage packages
Security
Find and fix vulnerabilities
Codespaces
Instant dev environments
Copilot
Write better code with AI
Code review
Manage code changes
Issues
Plan and track work
Discussions
Collaborate outside of code
* Explore
* All features
* Documentation
* GitHub Skills
* Blog
For
Enterprise
Teams
Startups
Education
By Solution
CI/CD & Automation
DevOps
DevSecOps
Case Studies
Customer Stories
Resources
GitHub Sponsors
Fund open source developers
* The ReadME Project
GitHub community articles
* Repositories
* Topics
* Trending
* Collections
Pricing
In this repository All GitHub
No suggested jump to results
In this repository All GitHub
In this organization All GitHub
In this repository All GitHub
Sign in
Sign up
OpencachingDeutschland / oc-server3 Public
- Notifications
- Fork 45
- Star 37
- Code
- Pull requests 4
- Discussions
- Actions
- Projects
- Security
- Insights
More
Permalink
Browse files
Fix XSS on login page (OBB-1146814)
- Loading branch information
sdennler committed
Sep 4, 2022
1 parent 4beac37 commit 3296ebd61e7fe49e93b5755d5d7766d6e94a7667
Showing 1 changed file with 2 additions and 1 deletion.
3 htdocs/templates2/ocstyle/login.tpl
Show comments View file
@@ -2,6 +2,7 @@
* You can find the license in the docs directory
***************************************************************************}
{* OCSTYLE *}
<h1>login.tpl</h1>
<div class="content2-pagetitle">
<img src="resource2/{$opt.template.style}/images/misc/32x32-profile.png" style="margin-right: 10px;" width="32" height="32" alt="" />
{t}Login{/t}
@@ -41,7 +42,7 @@
<table class="table">
<tr>
<td>{t}Username:{/t}</td>
<td><input name="email" maxlength="80" type="text" value="{$username}" class="input200" /></td>
<td><input name="email" maxlength="80" type="text" value="{$username|escape}" class="input200" /></td>
</tr>
<tr>
<td>{t}Password:{/t}</td>
0 comments on commit 3296ebd
Please sign in to comment.