search

anyaudio / anyaudio-server

:musical_note: Simple server to search youtube and give direct audio download and stream links
91 stars 19 forks source link

Fix an XSS vulnerability #163

Closed tch1bo closed 10 months ago

tch1bo commented 5 years ago

I found an XSS (https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)) vulnerability in the explore endpoint.

Proof of concept: xss

Please consider my quick fix for it.