SuperCount icon indicating copy to clipboard operation
SuperCount copied to clipboard

XSS vulnerability

Open PiRSquared17 opened this issue 11 years ago • 1 comments

Example: https://tools.wmflabs.org/supercount/index.php?user=%22%3E%3Cmarquee%3EXSS%3C/marquee%3E%3Cscript%3Ealert%28%27XSS%27%29%3B%3C%2Fscript%3E&project=&toplimit=10

PiRSquared17 avatar Oct 24 '14 00:10 PiRSquared17

EWWWWWWWWWWWWWWWWWWWWWWWWWW

Where is the code? I was going to submit a patch but there is no code....!!!

Please use htmlspecialchars

addshore avatar Jan 29 '15 04:01 addshore