XSS on URL recorder in rhizome-conifer/conifer
Aug 19th 2022
Hi Team ,
I found XSS vulnerability in url recorder https://conifer.rhizome.org/"USERNAME"/default-collection/
Proof of Concept
Image : https://ibb.co/dBr0QQr
and this is another example via another user from my account :
Image : https://ibb.co/rdWw2Cj
previous image contains user cookie
Filter input on arrival. Encode data on output.
Attacker can takeover any account by just send link to the victim.