Kallithea Security Notice

Cross-site scripting (XSS)

Synopsis

A vulnerability has been found in Kallithea in the display of search results.

Description

The search feature in Kallithea did not correctly escape all arguments when displaying search matches and linking to the corresponding files.

An attacker that can control the contents of a repository could thus cause a cross-site scripting (XSS) vulnerability when a victim searches for a term that is found in a file controlled by the attacker.

This issue was found and reported by:
Bob Hogg (wombat@rwhogg.site).

Resolution

The issue is fixed in release 0.4.1. Users are advised to upgrade as soon as possible.

Affected versions

This issue is present in all previously released versions of Kallithea, up to and including 0.4.0.

References

  1. Mercurial changeset fixing the issue https://kallithea-scm.org/repos/kallithea/changeset/b9b719fb477440488bc1a47c890b6d0d38a4ae76