Cross-site Scripting (XSS) - Reflected in admidio/admidio
Oct 18th 2021
Have reviewed your fix for double URL encoding here:
But it can easily be bypassed by triple URL encoding.
Note: apparently after applying the above fix from Github on the machine, I cannot use the document_file_function to retrieve files anymore. But the backup_file_function still performs the same thing.
Proof of Concept
Ensure you applied https://github.com/Admidio/admidio/commit/6b3820a574dc5f52243fbaafdb7089560c99d949, then trigger XSS with: