Project

General

Profile

Bug #5

Replaces ; with \;

Added by Anonymous over 3 years ago. Updated over 3 years ago.

Status:
Rejected
Priority:
Immediate
Assignee:
-
Target version:
-
Start date:
05/20/2014
Due date:
% Done:

0%


Description

Example:
............
<PARAM name="value" help="any value" ptype="STRING"/>
<ACTION>
echo "${value}" //// if value entered is "akshay;" then it displays "akshay\;"
echo '${value}' //// if value entered is "akshay;" then it displays "akshay\;"
</ACTION>
.......

History

#1 Updated by Serj Kalichev over 3 years ago

  • Status changed from New to Rejected

it's a right behaviour.

echo "${value}" # akshay\;
echo '${value}' # akshay\;
echo ${value} # akshay;
echo "akshay\;" # akshay\;
echo 'akshay\;' # akshay\;

Some dangerous (for shell use) symbols like ';' are escaped. The attacker can write something like:
  1. test-command ";rm -Rf /etc"
    And if you use
    echo ${value}
    then the unsafe command (rm or something else) can be executed

Also available in: Atom PDF