Summary

The Convos is an open source multi-user chat that runs in a web browser. You can't use SVG extension in Convos' chat window, but you can upload .html extension. This causes Stored XSS. Also, after uploading a file, it does not log in, and XSS occurs even if you connect.

Impact

Through this vulnerability, an attacker is capable to execute malicious scripts.

Patches

5c0a1ec

References

https://blog.pocas.kr/2021/12/30/2021-12-30-s-xss-convos-chat/#First-vulnerability
https://www.huntr.dev/bounties/ae424798-de01-4972-b73b-2db674f82368/