Skip to main content



      Home
Home » Archived » Hudson » XSS Vulerability issue in Hudson(XSS Vulerability issue in Hudson)
XSS Vulerability issue in Hudson [message #1018342] Wed, 13 March 2013 12:31 Go to next message
Eclipse UserFriend
Hi

We are facing XSS vulerability issue (Cross site scripting issue) in Hudson. We tried installing the pegdown markup formatter plugin but again the issue persists.

/computer/(master)/load-statistics is the url that shows the security exception.

NB: Read access is given to the Anonymous user



Please let us know of anything can be done to fix the issue


Regards
Deepak
Re: XSS Vulerability issue in Hudson [message #1018511 is a reply to message #1018342] Wed, 13 March 2013 21:05 Go to previous message
Eclipse UserFriend
Hi Deepak, I hope you have enabled "Prevent Cross Site Request Forgery exploits" option in the Hudson Configuration page.

Since this is related to security vulnerabilities, let us discuss this offline (winstonDOTprakashATgmailDOTcom)
Previous Topic:Cannot configure security, ClassNotFoundException: org.acegisecurity.AuthenticationManager
Next Topic:Problems with setting up Git project
Goto Forum:
  


Current Time: Mon Jul 07 11:49:55 EDT 2025

Powered by FUDForum. Page generated in 0.03810 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top