You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Impact
Commonly include transmitting private data, like cookies or other session information, to the attacker, redirecting the victim to web content controlled by the attacker, or performing other malicious operations on the user’s machine under the guise of the vulnerable site.
Screenshots
OS: Windows
Browser: Google
Version: 122.0.6261.131
The text was updated successfully, but these errors were encountered:
Describe the bug
Everyone can take advantage of a XSS vulnerability in the URL.
To Reproduce
Enter website address https://lavalite.org/docs/master/%22%3e%3csvg%20onload=alert (1) % 3e
Expected behavior
Filter keywords such as onload and svg
Impact
Commonly include transmitting private data, like cookies or other session information, to the attacker, redirecting the victim to web content controlled by the attacker, or performing other malicious operations on the user’s machine under the guise of the vulnerable site.
Screenshots
OS: Windows
Browser: Google
Version: 122.0.6261.131
The text was updated successfully, but these errors were encountered: