In the HTML documents section of the Security administration interface, users with the ADMIN role can configure a toggle to prevent privilege escalation attacks.
A privilege escalation attack can occur in the following circumstances:
-
A user with the
KHUB_ADMINorCONTENT_PUBLISHERrole uploads an HTML document. -
A user with the
ADMIN,USERS_ADMINorPORTAL_ADMINrole views that document in the Viewer page. -
The user with the
KHUB_ADMINorCONTENT_PUBLISHERrole injects JavaScript into the HTML document to get rights reserved for users with theADMIN,USERS_ADMINorPORTAL_ADMINrole.
HTML documents include all unstructured documents, attachments and resources with the MIME type text/html.
When the toggle is active, users must select the Download option to access an HTML document. The Download option is available in the Search page next to the document's title. It is also available in the Viewer page content pane, and in the View page title bar. Any attempt to open the document directly in the Viewer page fails.
Disabling the toggle makes the portal vulnerable to privilege escalation attacks.