swagger-typescript-api icon indicating copy to clipboard operation
swagger-typescript-api copied to clipboard
verified publisher icon acacode

⚠️ Vulnerability (all versions): Unescaped characters from description

Open FDiskas opened this issue 5 months ago • 4 comments

generates broken ts file if description in swagger file containes forward slash */ like in this example **/information**

...
      summary: Get service point file of all Nordic countries (SE,FI,DK,NO).
      description: |-
        Get service point file of all Nordic countries (SE,FI,DK,NO) from S3 storage. You can download previous service point file upto 7 days from current date. This is equivalent to **/information** endpoint with parameters `countryCode:SE,FI,DK,NO` and `context:ALL` and header `Accept-Encoding:gzip`.

        Download the file using the URL in reponse.
...

FDiskas avatar Jul 08 '25 13:07 FDiskas

Looks like I can inject some javascript using swagger docs only by adding something in a description: **/ alert(12) /** So this issue can be converted to a security issue

FDiskas avatar Aug 08 '25 12:08 FDiskas

Quick patch using patch-package can by applied

swagger-typescript-api+13.2.7.patch

FDiskas avatar Aug 08 '25 12:08 FDiskas

@smorimoto - take a look please

FDiskas avatar Aug 08 '25 12:08 FDiskas

The same issues go to any other place, like summary, name, tags and so on

FDiskas avatar Aug 08 '25 14:08 FDiskas