[Security] Insufficient input validation

XMLWordPrintableJSON

    • Type: Story
    • Resolution: Done
    • Priority: Major - P3
    • 1.0.0
    • Affects Version/s: None
    • Component/s: None
    • None
    • Not Needed
    • Developer Tools

      Insufficient input validation While ExportDataTool validates input for the path traversal characters it is not sufficient enough since it does not do normalization of unicode encoding.

      ​​The export code which does validateExportName decode filename from URI, the filename is constructed from collection name and database which can be unicode, so even though code checks for path traversal in ..,
      , / , it may miss validation if unicode chars were used.

      Params: * Collection

      • Database|Medium|Input Validation|Implement a more robust strategy for path validation:
      1. normalize('NFKC')
      2. format check using regexp - safePathRegex = /^[a-zA-Z0-9-_\.\/]+$/;
      3. Resolve path and validate location
      4. const intendedPath = path.resolve(baseDir, normalizedPath);
        Verify the final path hasn't escaped the base intendedPath.startsWith(baseDir)|

       

       

       

            Assignee:
            Himanshu Singh
            Reporter:
            Bianca Lisle
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: