Security issue: map data is not being sanitised properly

Question

ScottNZ opened this issue 10 years ago · 4 comments

e.g. host a game using a map with html in its title and navigate to http://www.openra.net/games/
This is a pretty major security issue.

Answer 1 · 2014-11-02T13:34:57.000Z

It does not seem to be a problem on the http://www.openra.net/games/ side:

<script>alert(''lol test'')</script>

is neither displayed nor executed.

Answer 2 · 2014-11-02T13:40:07.000Z

It's possibly just a case of providing the html for closing whatever needs to be closed for the exploit to work. Stuff like this works:

Answer 3 · 2014-11-02T13:53:06.000Z

Fixed in #168.

Answer 4 · 2014-11-03T06:47:58.000Z

OpenRA/OpenRA-Resources#240 has been fixed server side.