Fixes minor vulnerability when using target="_blank" on links (RSPEC-5148)

author Nickolas Gupton <redacted>

Mon, 24 May 2021 20:17:08 +0000 (16:17 -0400)

committer Nickolas Gupton <redacted>

Mon, 24 May 2021 20:17:08 +0000 (16:17 -0400)
author Nickolas Gupton <redacted>
Mon, 24 May 2021 20:17:08 +0000 (16:17 -0400)
committer Nickolas Gupton <redacted>
Mon, 24 May 2021 20:17:08 +0000 (16:17 -0400)
diff --git a/resources/views/api-docs/index.blade.php b/resources/views/api-docs/index.blade.php

index d9c3d659513507c952e3aaecac81d6f7d6c6df06..56f7135c36bca4776474eaa839bb6d5aa80e81fc 100644 (file)
--- a/resources/views/api-docs/index.blade.php
+++ b/resources/views/api-docs/index.blade.php
@@ -190,7 +190,7 @@
                              <h5 id="{{ $endpoint['name'] }}" class="text-mono mb-m">
                                  <span class="api-method" data-method="{{ $endpoint['method'] }}">{{ $endpoint['method'] }}</span>
                                  @if($endpoint['controller_method_kebab'] === 'list')
                              <h5 id="{{ $endpoint['name'] }}" class="text-mono mb-m">
                                  <span class="api-method" data-method="{{ $endpoint['method'] }}">{{ $endpoint['method'] }}</span>
                                  @if($endpoint['controller_method_kebab'] === 'list')
-                                    <a style="color: inherit;" target="_blank" href="{{ url($endpoint['uri']) }}">{{ url($endpoint['uri']) }}</a>
+                                    <a style="color: inherit;" target="_blank" rel="noopener" href="{{ url($endpoint['uri']) }}">{{ url($endpoint['uri']) }}</a>
                                  @else
                                      {{ url($endpoint['uri']) }}
                                  @endif
                                  @else
                                      {{ url($endpoint['uri']) }}
                                  @endif
diff --git a/resources/views/attachments/manager-list.blade.php b/resources/views/attachments/manager-list.blade.php

index 313faa5755f34e9aebda614f47f563a762911956..b48fde9c01d90c0efe6341fcf88c7ec5d1b5d8a4 100644 (file)
--- a/resources/views/attachments/manager-list.blade.php
+++ b/resources/views/attachments/manager-list.blade.php
@@ -7,7 +7,7 @@
               class="card drag-card">
              <div class="handle">@icon('grip')</div>
              <div class="py-s">
               class="card drag-card">
              <div class="handle">@icon('grip')</div>
              <div class="py-s">
-                <a href="{{ $attachment->getUrl() }}" target="_blank">{{ $attachment->name }}</a>
+                <a href="{{ $attachment->getUrl() }}" target="_blank" rel="noopener">{{ $attachment->name }}</a>
              </div>
              <div class="flex-fill justify-flex-end">
                  <button component="event-emit-select"
              </div>
              <div class="flex-fill justify-flex-end">
                  <button component="event-emit-select"
diff --git a/resources/views/common/footer.blade.php b/resources/views/common/footer.blade.php

index 67b52a609e686881e6286c9f7ad028ab6f8b494a..dd488dce541a68a7194d113a73fe9ce1a8ea32cb 100644 (file)
--- a/resources/views/common/footer.blade.php
+++ b/resources/views/common/footer.blade.php
@@ -1,7 +1,7 @@
  @if(count(setting('app-footer-links', [])) > 0)
  <footer>
      @foreach(setting('app-footer-links', []) as $link)
  @if(count(setting('app-footer-links', [])) > 0)
  <footer>
      @foreach(setting('app-footer-links', []) as $link)
-        <a href="{{ $link['url'] }}" target="_blank">{{ strpos($link['label'], 'trans::') === 0 ? trans(str_replace('trans::', '', $link['label'])) : $link['label'] }}</a>
+        <a href="{{ $link['url'] }}" target="_blank" rel="noopener">{{ strpos($link['label'], 'trans::') === 0 ? trans(str_replace('trans::', '', $link['label'])) : $link['label'] }}</a>
      @endforeach
  </footer>
  @endif
 \ No newline at end of file
      @endforeach
  </footer>
  @endif
 \ No newline at end of file
diff --git a/resources/views/components/image-manager-form.blade.php b/resources/views/components/image-manager-form.blade.php

index e49a5fca723f8c96fbc1182856b4dae676ac15a8..6d62552266945fc7d27579cab7044a835289907f 100644 (file)
--- a/resources/views/components/image-manager-form.blade.php
+++ b/resources/views/components/image-manager-form.blade.php
@@ -7,7 +7,7 @@
            option:ajax-form:url="{{ url('images/' . $image->id) }}">
  
          <div class="image-manager-viewer">
            option:ajax-form:url="{{ url('images/' . $image->id) }}">
  
          <div class="image-manager-viewer">
-            <a href="{{ $image->url }}" target="_blank" class="block">
+            <a href="{{ $image->url }}" target="_blank" rel="noopener" class="block">
                  <img src="{{ $image->thumbs['display'] }}"
                       alt="{{ $image->name }}"
                       class="anim fadeIn"
                  <img src="{{ $image->thumbs['display'] }}"
                       alt="{{ $image->name }}"
                       class="anim fadeIn"
@@ -40,6 +40,7 @@
                      <li>
                          <a href="{{ $page->url }}"
                             target="_blank"
                      <li>
                          <a href="{{ $page->url }}"
                             target="_blank"
+                           rel="noopener"
                             class="text-neg">{{ $page->name }}</a>
                      </li>
                  @endforeach
                             class="text-neg">{{ $page->name }}</a>
                      </li>
                  @endforeach
diff --git a/resources/views/components/page-picker.blade.php b/resources/views/components/page-picker.blade.php

index c59615d92a30a38fbb0aa66feba92d5a56c0ad1f..0df42e3cef9993f12c7552881a44a76ebbfbcb03 100644 (file)
--- a/resources/views/components/page-picker.blade.php
+++ b/resources/views/components/page-picker.blade.php
@@ -3,7 +3,7 @@
  <div page-picker>
      <div class="input-base">
          <span @if($value) style="display: none" @endif page-picker-default class="text-muted italic">{{ $placeholder }}</span>
  <div page-picker>
      <div class="input-base">
          <span @if($value) style="display: none" @endif page-picker-default class="text-muted italic">{{ $placeholder }}</span>
-        <a @if(!$value) style="display: none" @endif href="{{ url('/link/' . $value) }}" target="_blank" class="text-page" page-picker-display>#{{$value}}, {{$value ? \BookStack\Entities\Models\Page::find($value)->name : '' }}</a>
+        <a @if(!$value) style="display: none" @endif href="{{ url('/link/' . $value) }}" target="_blank" rel="noopener" class="text-page" page-picker-display>#{{$value}}, {{$value ? \BookStack\Entities\Models\Page::find($value)->name : '' }}</a>
      </div>
      <br>
      <input type="hidden" value="{{$value}}" name="{{$name}}" id="{{$name}}">
      </div>
      <br>
      <input type="hidden" value="{{$value}}" name="{{$name}}" id="{{$name}}">
diff --git a/resources/views/pages/revisions.blade.php b/resources/views/pages/revisions.blade.php

index 6ff33c68de4b7e2baddc4db1301f111a0161c865..6624620c5e0d46d3d6da4120d01e841e89939965 100644 (file)
--- a/resources/views/pages/revisions.blade.php
+++ b/resources/views/pages/revisions.blade.php
@@ -41,14 +41,14 @@
                              <td><small>{{ $revision->created_at->formatLocalized('%e %B %Y %H:%M:%S') }} <br> ({{ $revision->created_at->diffForHumans() }})</small></td>
                              <td>{{ $revision->summary }}</td>
                              <td class="actions">
                              <td><small>{{ $revision->created_at->formatLocalized('%e %B %Y %H:%M:%S') }} <br> ({{ $revision->created_at->diffForHumans() }})</small></td>
                              <td>{{ $revision->summary }}</td>
                              <td class="actions">
-                                <a href="{{ $revision->getUrl('changes') }}" target="_blank">{{ trans('entities.pages_revisions_changes') }}</a>
+                                <a href="{{ $revision->getUrl('changes') }}" target="_blank" rel="noopener">{{ trans('entities.pages_revisions_changes') }}</a>
                                  <span class="text-muted">&nbsp;|&nbsp;</span>
  
  
                                  @if ($index === 0)
                                  <span class="text-muted">&nbsp;|&nbsp;</span>
  
  
                                  @if ($index === 0)
-                                    <a target="_blank" href="{{ $page->getUrl() }}"><i>{{ trans('entities.pages_revisions_current') }}</i></a>
+                                    <a target="_blank" rel="noopener" href="{{ $page->getUrl() }}"><i>{{ trans('entities.pages_revisions_current') }}</i></a>
                                  @else
                                  @else
-                                    <a href="{{ $revision->getUrl() }}" target="_blank">{{ trans('entities.pages_revisions_preview') }}</a>
+                                    <a href="{{ $revision->getUrl() }}" target="_blank" rel="noopener">{{ trans('entities.pages_revisions_preview') }}</a>
                                      <span class="text-muted">&nbsp;|&nbsp;</span>
                                      <div component="dropdown" class="dropdown-container">
                                          <a refs="dropdown@toggle" href="#" aria-haspopup="true" aria-expanded="false">{{ trans('entities.pages_revisions_restore') }}</a>
                                      <span class="text-muted">&nbsp;|&nbsp;</span>
                                      <div component="dropdown" class="dropdown-container">
                                          <a refs="dropdown@toggle" href="#" aria-haspopup="true" aria-expanded="false">{{ trans('entities.pages_revisions_restore') }}</a>
diff --git a/resources/views/partials/entity-export-menu.blade.php b/resources/views/partials/entity-export-menu.blade.php

index 4d847bcaef801c4700a74a84de8fc7a025fc8fe6..6d23af07c24bc4ae046edf3ee9b4b3cd063783a3 100644 (file)
--- a/resources/views/partials/entity-export-menu.blade.php
+++ b/resources/views/partials/entity-export-menu.blade.php
@@ -5,8 +5,8 @@
          <span>{{ trans('entities.export') }}</span>
      </div>
      <ul refs="dropdown@menu" class="wide dropdown-menu" role="menu">
          <span>{{ trans('entities.export') }}</span>
      </div>
      <ul refs="dropdown@menu" class="wide dropdown-menu" role="menu">
-        <li><a href="{{ $entity->getUrl('/export/html') }}" target="_blank">{{ trans('entities.export_html') }} <span class="text-muted float right">.html</span></a></li>
-        <li><a href="{{ $entity->getUrl('/export/pdf') }}" target="_blank">{{ trans('entities.export_pdf') }} <span class="text-muted float right">.pdf</span></a></li>
-        <li><a href="{{ $entity->getUrl('/export/plaintext') }}" target="_blank">{{ trans('entities.export_text') }} <span class="text-muted float right">.txt</span></a></li>
+        <li><a href="{{ $entity->getUrl('/export/html') }}" target="_blank" rel="noopener">{{ trans('entities.export_html') }} <span class="text-muted float right">.html</span></a></li>
+        <li><a href="{{ $entity->getUrl('/export/pdf') }}" target="_blank" rel="noopener">{{ trans('entities.export_pdf') }} <span class="text-muted float right">.pdf</span></a></li>
+        <li><a href="{{ $entity->getUrl('/export/plaintext') }}" target="_blank" rel="noopener">{{ trans('entities.export_text') }} <span class="text-muted float right">.txt</span></a></li>
      </ul>
  </div>
 \ No newline at end of file
      </ul>
  </div>
 \ No newline at end of file
author	Nickolas Gupton <redacted>
	Mon, 24 May 2021 20:17:08 +0000 (16:17 -0400)
committer	Nickolas Gupton <redacted>
	Mon, 24 May 2021 20:17:08 +0000 (16:17 -0400)
resources/views/api-docs/index.blade.php		patch \| blob \| history
resources/views/attachments/manager-list.blade.php		patch \| blob \| history
resources/views/common/footer.blade.php		patch \| blob \| history
resources/views/components/image-manager-form.blade.php		patch \| blob \| history
resources/views/components/page-picker.blade.php		patch \| blob \| history
resources/views/pages/revisions.blade.php		patch \| blob \| history
resources/views/partials/entity-export-menu.blade.php		patch \| blob \| history