search

s3131212 / allendisk

http://ad.allenchou.cc
MIT License
39 stars 8 forks source link

Cross-site Scripting (XSS) #15

Closed honcbb closed 7 years ago

honcbb commented 7 years ago

Version:1.6

Hi, I'm in your 1.6 version open source found to download.php this page parameter value ID does not filter in the output or filter or escape the input character to cause XSS

Affected Files:

/downfile.php

Poc Payload:

http://site/downfile.php?id=%22%3E%3Csvg/onload=alert(domain)%3E%22

Resolving: Filtering encoding or escaping

unnamed 2 unnamed

honcbb commented 7 years ago

Files repaired:

downfile.zip

s3131212 commented 7 years ago

謝謝通報,已經修復 :) 37b6a63