Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Valid

Reported on

Dec 10th 2021

Description

the editor has XSS vulnerability

Proof of Concept

payload:

</a>
<svg><animate onbegin=alert(11) attributeName=x dur=1s>

Open the editorhttps://ld246.com/guide/markdown, enter the payload, and trigger the XSS vulnerability

demo pic : https://drive.google.com/file/d/1fl07CUXSS0DyvjtuftslMnyr2uG_Z8F7/view?usp=sharing

Impact

This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie.

We are processing your report and will contact the vanessa219/vditor team within 24 hours. 2 years ago
We have contacted a member of the vanessa219/vditor team and are waiting to hear back 2 years ago
V validated this vulnerability 2 years ago
ning1022 has been awarded the disclosure bounty
The fix bounty is now up for grabs
V
2 years ago

Maintainer

https://github.com/Vanessa219/vditor/issues/1133

V marked this as fixed in 1.0.34 with commit 8d4d08 2 years ago
The fix bounty has been dropped
This vulnerability will not receive a CVE
to join this conversation