Skip to content

Commit

Permalink
WW-3597 - XSS vulnerability in javatemplates plugin (thanks Gareth Fa…
Browse files Browse the repository at this point in the history 
…ires)

git-svn-id: https://svn.apache.org/repos/asf/struts/struts2/trunk@1084872 13f79535-47bb-0310-9956-ffa450edef68
  • Loading branch information
@mcucchiara
mcucchiara committed Mar 24, 2011
1 parent 38a856d commit 1736b56
Show file tree
Hide file tree
Showing 8 changed files with 10 additions and 10 deletions.
2 changes: 1 addition & 1 deletion plugins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/FileHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ public void generate() throws IOException {
a.addDefaultToEmpty("name", params.get("name"))
.add("type", "file")
.addIfExists("size", params.get("size"))
.addIfExists("value", params.get("nameValue"), false)
.addIfExists("value", params.get("nameValue"))
.addIfTrue("disabled", params.get("disabled"))
.addIfExists("accept", params.get("accept"))
.addIfExists("tabindex", params.get("tabindex"))
Expand Down
2 changes: 1 addition & 1 deletion plugins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/HiddenHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,7 @@ public void generate() throws IOException {

a.addDefaultToEmpty("name", params.get("name"))
.add("type", "hidden")
.addIfExists("value", params.get("nameValue"), false)
.addIfExists("value", params.get("nameValue"))
.addIfTrue("disabled", params.get("disabled"))
.addIfExists("id", params.get("id"))
.addIfExists("class", params.get("cssClass"))
Expand Down
2 changes: 1 addition & 1 deletion ...ins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/PasswordHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,7 @@ public void generate() throws IOException {

Boolean showPassword = (Boolean) params.get("showPassword");
if (showPassword != null && showPassword)
attrs.addIfExists("value", params.get("nameValue"), false);
attrs.addIfExists("value", params.get("nameValue"));

attrs.addDefaultToEmpty("name", params.get("name"))
.add("type", "password")
Expand Down
2 changes: 1 addition & 1 deletion plugins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/RadioHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -79,7 +79,7 @@ public void generate() throws IOException {
a.add("type", "radio")
.addDefaultToEmpty("name", params.get("name"))
.addIfTrue("checked", checked)
.addIfExists("value", itemKeyStr, false)
.addIfExists("value", itemKeyStr)
.addIfTrue("disabled", params.get("disabled"))
.addIfExists("tabindex", params.get("tabindex"))
.addIfExists("id", id);
Expand Down
2 changes: 1 addition & 1 deletion plugins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/ResetHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,7 @@ public void generate() throws IOException {

attrs.addDefaultToEmpty("name", params.get("name"))
.add("type", "reset")
.addIfExists("value", params.get("nameValue"), false)
.addIfExists("value", params.get("nameValue"))
.addIfExists("tabindex", params.get("tabindex"))
.addIfExists("id", params.get("id"))
.addIfExists("class", params.get("cssClass"))
Expand Down
2 changes: 1 addition & 1 deletion plugins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/SelectHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,7 @@ public void generate() throws IOException {

a.addDefaultToEmpty("name", params.get("name"))
.addIfExists("size", params.get("size"))
.addIfExists("value", value, false)
.addIfExists("value", value)
.addIfTrue("disabled", params.get("disabled"))
.addIfTrue("readonly", params.get("readonly"))
.addIfTrue("multiple", params.get("multiple"))
Expand Down
6 changes: 3 additions & 3 deletions plugins/javatemplates/src/main/java/org/apache/struts2/views/java/simple/SubmitHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ public void generate() throws IOException {
if ("button".equals(type)) {
attrs.addIfExists("name", params.get("name"))
.add("type", "submit")
.addIfExists("value", params.get("nameValue"), false)
.addIfExists("value", params.get("nameValue"))
.addIfTrue("disabled", params.get("disabled"))
.addIfExists("tabindex", params.get("tabindex"))
.addIfExists("id", params.get("id"))
Expand All @@ -47,7 +47,7 @@ public void generate() throws IOException {

start("button", attrs);
} else if ("image".equals(type)) {
attrs.addIfExists("src", params.get("src"), false)
attrs.addIfExists("src", params.get("src"))
.add("type", "image")
.addIfExists("alt", params.get("label"))
.addIfExists("id", params.get("id"))
Expand All @@ -57,7 +57,7 @@ public void generate() throws IOException {
} else {
attrs.addIfExists("name", params.get("name"))
.add("type", "submit")
.addIfExists("value", params.get("nameValue"), false)
.addIfExists("value", params.get("nameValue"))
.addIfTrue("disabled", params.get("disabled"))
.addIfExists("tabindex", params.get("tabindex"))
.addIfExists("id", params.get("id"))
Expand Down
2 changes: 1 addition & 1 deletion ...ns/javatemplates/src/main/java/org/apache/struts2/views/java/simple/TextFieldHandler.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ public void generate() throws IOException {
.addDefaultToEmpty("name", params.get("name"))
.addIfExists("size", params.get("size"))
.addIfExists("maxlength", params.get("maxlength"))
.addIfExists("value", params.get("nameValue"), false)
.addIfExists("value", params.get("nameValue"))
.addIfTrue("disabled", params.get("disabled"))
.addIfTrue("readonly", params.get("readonly"))
.addIfExists("tabindex", params.get("tabindex"))
Expand Down

0 comments on commit 1736b56

Please sign in to comment.