spc-pleroma/test
Mark Felder 18a0c923d0 Resolve information disclosure vulnerability through emoji pack archive download endpoint
The pack name has been sanitized so an attacker cannot upload a media
file called pack.json with their own handcrafted list of emoji files as
arbitrary files on the filesystem and then call the emoji pack archive
download endpoint with a pack name crafted to the location of the media
file they uploaded which tricks Pleroma into generating a zip file of
the target files the attacker wants to download.

The attack only works if the Pleroma instance does not have the
AnonymizeFilename upload filter enabled, which is currently the default.

Reported by: graf@poast.org
2023-08-04 08:39:55 +02:00
..
config Load an emoji.txt specific to the test env 2021-02-03 16:40:59 -06:00
credo/check/consistency Copyright bump for 2022 2022-02-25 23:11:42 -07:00
fixtures Ignores in exiftool read descriptions 2023-02-20 12:30:36 -05:00
instance_static support for special chars in pack name 2020-09-24 09:12:37 +03:00
mix Remove Quack logging backend 2022-11-11 12:36:29 -05:00
pleroma Resolve information disclosure vulnerability through emoji pack archive download endpoint 2023-08-04 08:39:55 +02:00
support expanding WebFinger 2022-11-03 09:48:24 -04:00
test_helper.exs Copyright bump for 2022 2022-02-25 23:11:42 -07:00