grav icon indicating copy to clipboard operation
grav copied to clipboard

Published 20 hours ago verified publisher icon getgrav

Create New user page XSS

Open MorphyKutay opened this issue 2 years ago • 1 comments

Describe the bug

not filtering the xss payload written to the username

https://owasp.org/www-community/attacks/xss/

To Reproduce

Steps to reproduce the behavior: 1-) Click on accounts from Dashboard and create new account

2-) Enter the xss payload for the username and fill in the other fields

3-) When you click the save button, you will see an alert.

Screenshots

Screenshot 2022-12-02 130401

Additional context

POC : https://www.youtube.com/watch?v=iTX0nbD9YgQ

MorphyKutay avatar Dec 02 '22 10:12 MorphyKutay

Confirmed. Seems the Username Regex is not used to verify.

Rotzbua avatar Dec 03 '22 20:12 Rotzbua