Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Valid

Reported on

Dec 10th 2021


Description

the editor has XSS vulnerability

Proof of Concept

payload:

</a>
<svg><animate onbegin=alert(11) attributeName=x dur=1s>

Open the editorhttps://ld246.com/guide/markdown, enter the payload, and trigger the XSS vulnerability

demo pic : https://drive.google.com/file/d/1fl07CUXSS0DyvjtuftslMnyr2uG_Z8F7/view?usp=sharing

Impact

This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie.

We are processing your report and will contact the vanessa219/vditor team within 24 hours. 6 months ago
We have contacted a member of the vanessa219/vditor team and are waiting to hear back 6 months ago
V validated this vulnerability 6 months ago
ning1022 has been awarded the disclosure bounty
The fix bounty is now up for grabs
V
4 months ago

Maintainer


https://github.com/Vanessa219/vditor/issues/1133

V confirmed that a fix has been merged on 8d4d08 4 months ago
The fix bounty has been dropped
to join this conversation