I've attached a view export that exhibits this vulnerability. To reproduce, simply import and visit either views_ui or the views page path.
The security team has cleared this issue to be fixed publicly as this exploit requires administer views.
Comment | File | Size | Author |
---|---|---|---|
#3 | 1506418-label-check.patch | 1.33 KB | dawehner |
#1 | 1506418-label-check.patch | 534 bytes | dawehner |
view_export.txt | 7.16 KB | dstol |
Comments
Comment #1
dawehnerThanks for testing basically everything in terms of basic security. Here is a patch which should fix this particular issue.
Comment #2
dstolThe patch in #1 fixes views issue but not views_ui.
Comment #3
dawehnerHere are some more places, thanks for the proper review!
Comment #4
dstolConfirmed fixed.
Comment #5
dawehnerCommitted to 7.x-3.x, let's backport them to 6.x-3.x as well.
Comment #6
Chris Matthews CreditAttribution: Chris Matthews as a volunteer commentedThe Drupal 6 branch is no longer supported, please check with the D6LTS project if you need further support. For more information as to why this issue was closed, please see issue #3030347: Plan to clean process issue queue