Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Insufficient Cache Control in admin UI page which contain user-supplied information #22479

Closed
sug-ghosh opened this issue Jun 22, 2024 · 1 comment
Closed

Insufficient Cache Control in admin UI page which contain user-supplied information #22479

sug-ghosh opened this issue Jun 22, 2024 · 1 comment
Assignees
@sug-ghosh

Comments

@sug-ghosh
Copy link

sug-ghosh commented Jun 22, 2024
edited
Loading

Not setting the proper header values may cause browsers to store pages within their respective caches. On public, shared, or any other non-private computers, a malicious person may search through the browser cache to locate sensitive information cached during another user's session.

In Trino WebUI also, we have all the query details pages, we are storing the cache in browser which should be remediated.
@sug-ghosh sug-ghosh changed the title Insuffi Insufficient Cache Control in admin UI page which contain user-supplied information Jun 22, 2024
@sug-ghosh sug-ghosh mentioned this issue Jun 22, 2024
Closed
@sug-ghosh sug-ghosh self-assigned this Jun 24, 2024
@wendigo
Copy link
Contributor

wendigo commented Jun 26, 2024

Closed by #22502

@wendigo wendigo closed this as completed Jun 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sug-ghosh sug-ghosh

Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@wendigo @sug-ghosh