Fixed bug #15729: Sysext setup's user simulation is susceptible to XSS (thanks to...
authorOliver Hader <oliver.hader@typo3.org>
Wed, 6 Oct 2010 08:14:30 +0000 (08:14 +0000)
committerOliver Hader <oliver.hader@typo3.org>
Wed, 6 Oct 2010 08:14:30 +0000 (08:14 +0000)
git-svn-id: https://svn.typo3.org/TYPO3v4/Core/trunk@8969 709f56b5-9817-0410-a4d7-c38de5d9e867

ChangeLog
typo3/sysext/setup/mod/index.php

index ce0ff85..5df62e0 100755 (executable)
--- a/ChangeLog
+++ b/ChangeLog
@@ -4,6 +4,7 @@
        * Follow-up to bug #15461: Added unit tests (thanks to Marcus Krause)
        * Fixed bug #15887: XSS in template analyzer (thanks to Georg Ringer)
        * Fixed bug #15728: Extension Manager allows to download arbitrary files beyond PATH_site or rootpath (thanks to Marcus Krause)
+       * Fixed bug #15729: Sysext setup's user simulation is susceptible to XSS (thanks to Marcus Krause)
 
 2010-10-05  Steffen Gebert  <steffen@steffen-gebert.de>
 
index e43512e..e46a5dc 100755 (executable)
@@ -798,7 +798,7 @@ class SC_mod_user_setup_index {
                $this->simulateSelector = '';
                unset($this->OLD_BE_USER);
                if ($BE_USER->isAdmin())        {
-                       $this->simUser = t3lib_div::_GP('simUser');
+                       $this->simUser = intval(t3lib_div::_GP('simUser'));
 
                                // Make user-selector:
                        $users = t3lib_BEfunc::getUserNames('username,usergroup,usergroup_cached_list,uid,realName', t3lib_BEfunc::BEenableFields('be_users'));