Jul 21st 2022
https scheme prefix, so this flaw lead to XSS vulnerability.
The payload used is the following:
Proof of Concept
Step to reproduct
1. Create new document
2. Add link as
Note: If the image quality is low when viewing live, you can download and watch
An attacker could use this vulnerability to takeover an admin account and get access to all the features of the outline application.