Cross-site Scripting (XSS) - DOM in emoncms/emoncms
Dec 6th 2021
Proof of Concept
1 - login into the app and browse to the section
Feeds > Import Data
2 - add
1638807909,<script>alert(2)</script> in the CSV area. Then click on one of the empty field (e.g.