Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

XSS 安全漏洞 #1274

Closed
Vanessa219 opened this issue Aug 4, 2022 · 0 comments
Closed

XSS 安全漏洞 #1274

Vanessa219 opened this issue Aug 4, 2022 · 0 comments
Assignees
@88250 @Vanessa219
Labels
修复缺陷
Milestone
3.8

Comments

@Vanessa219
Copy link
Owner

Vanessa219 commented Aug 4, 2022
edited

XSS PoC : <form ><iframe/src="data:text/html,<script>alert('xss');</script>"></iframe>

1.Open the https://ld246.com/guide/markdown
2.Enter the XSS PoC(any whitespaces in poc is needed)
3.XSS will be triggered at once

https://huntr.dev/bounties/8637f20d-e1a4-4627-8f32-add24498e296/
@Vanessa219 Vanessa219 self-assigned this Aug 4, 2022
@Vanessa219 Vanessa219 added this to the 3.8 milestone Aug 4, 2022
@Vanessa219 Vanessa219 assigned 88250 and unassigned Vanessa219 Aug 4, 2022
@88250 88250 changed the title XSS XSS 安全漏洞 Aug 4, 2022
@88250 88250 assigned Vanessa219 and unassigned 88250 Aug 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@88250 88250

@Vanessa219 Vanessa219

Labels
修复缺陷
Projects
None yet
Milestone
3.8
Development

No branches or pull requests
2 participants
@88250 @Vanessa219