Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSA is vulnerable to stored XSS in create ticket feature #5

Open
italovalcy opened this issue Jun 2, 2020 · 0 comments
Open

SSA is vulnerable to stored XSS in create ticket feature #5

italovalcy opened this issue Jun 2, 2020 · 0 comments

Comments

@italovalcy
Copy link
Member

When creating a new ticket, the user can insert javascript code and use it as a stored XSS.

Steps to reproduce:

  1. use the source code feature of the rich text editor
  2. insert any xss code (even a basic <script>alert(1)</script>)

Expected behavior:
filter out the malicious content

Actual behavior:
the malicious html content is stored

It is worth to mention that this is not only on the "edit as source code" feature. The attacker can also modify the content before submit.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@italovalcy