search

ThinkUpLLC / ThinkUp

ThinkUp gives you insights into your social networking activity on Twitter, Facebook, Instagram, and beyond.
http://thinkup.com
GNU General Public License v3.0
3.3k stars 674 forks source link

ThinkUp(lastest version)- Cross-Site Scripting (XSS) #2287

Open bestshow opened 7 years ago

bestshow commented 7 years ago

Procuct: ThinkUp Download: https://github.com/ThinkUpLLC/ThinkUp Vunlerable Version: lastest version Tested Version: lastest version Author: ADLab of Venustech

Advisory Details: I have discovered a Cross-Site Scripting (XSS) in ThinkUp, which can be exploited to execute arbitrary code. The vulnerability exists due to insufficient filtration of user-supplied data in “headline” HTTP GET parameter passed to “ThinkUp-master/webapp/insight_creator.php” url. An attacker could execute arbitrary HTML and script code in browser in context of the vulnerable website. The exploitation examples below uses the "alert()" JavaScript function to see a pop-up messagebox: Poc: http://localhost/teststh4/ThinkUp-master/ThinkUp-master/webapp/insight_creator.php?headline=%22%3E%3Cscript%3Ealert(1);%3C/script%3E%3C%22

bestshow commented 7 years ago

Is there anyone who can handle this issue ?