Cross-site Scripting (XSS) - Generic in forkcms/library

Valid

Reported on

Aug 29th 2021

✍️ Description

Please enter a description of the vulnerability. XSS is possible when the option allowHTML was set to true for text inputs and textfields

http://demo.fork-cms.com/en/search?form=search&q_widget=%22%3E%3Csvg/onload=alert(document.domain)%3E

XSS attacks can be done trough forms where that option is set to true

text.php L792

textarea.php L305

We have contacted a member of the forkcms/library team and are waiting to hear back 2 years ago

Jelmer Prins validated this vulnerability 2 years ago

Jelmer Prins has been awarded the disclosure bounty

The fix bounty is now up for grabs

Jelmer Prins marked this as fixed with commit f0b489 2 years ago

This vulnerability will not receive a CVE