bootstrap-wysihtml5 icon indicating copy to clipboard operation
bootstrap-wysihtml5 copied to clipboard

Published 20 hours ago verified publisher icon jhollingworth

XSS in bootstrap-wysihtml5

Open soaj1664 opened this issue 10 years ago • 1 comments

Hi,

The editor is vulnerable to an XSS. The editor allows users to insert link and if instead of normal link, I input JavaScript URI

javascript:alert%28location%29

then it works. The attacker can execute arbitrary code of his choice. Please fix this issue. Thanks!

soaj1664 avatar Apr 13 '14 12:04 soaj1664

I would expect this to be how it works. As this is a WYSIWYG editor. If you're worried about that type of stuff extend the code for your needs or filter this server side.

On Sunday, April 13, 2014, Ashar Javed [email protected] wrote:

Hi,

The editor is vulnerable to an XSS. The editor allows users to insert link and if instead of normal link, I input JavaScript URI

javascript:alert%28location%29

then it works. The attacker can execute arbitrary code of his choice. Please fix this issue. Thanks!

Reply to this email directly or view it on GitHubhttps://github.com/jhollingworth/bootstrap-wysihtml5/issues/340 .

dorgan avatar Apr 13 '14 15:04 dorgan