jQuery-Facebook-Photo-Selector icon indicating copy to clipboard operation
jQuery-Facebook-Photo-Selector copied to clipboard

Published 20 hours ago verified publisher icon cshold

Update your site because it's still vulnerable to Stored XSS

Open ghost opened this issue 10 years ago • 4 comments

http://labs.carsonshold.com/fb-photo-selector/

http://i.imgur.com/eBC4eIM.png ebc4eim

Payload: "><img src=x onerror=alert(document.cookie)>

ghost avatar Apr 13 '14 12:04 ghost

Not sure what can be done about this. What are your thoughts?

cshold avatar Apr 14 '14 12:04 cshold

https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)

ghost avatar Apr 14 '14 13:04 ghost

Isn't that just you editing the source? Never run into this before so unsure of what the fix is.

cshold avatar Apr 14 '14 13:04 cshold

No im not editing the source.

I made a Facebook Photo Album then connect in your website to upload a picture but the XSS appeared because of unsecured coding style in your Facebook Photo Selector.

Try to add

htmlentities(album.name)

Search more about how to filter XSS using htmlentities.

ghost avatar Apr 14 '14 13:04 ghost