Serious Risk: Stored XSS in v2.7-beta

[GoogleCodeExporter]

Hello,
I'm Ali Raza a web developer and security researcher. I recently decided to use 
clipbucket but before that I always pen-test every script so I did that for 
clip bucket and I found a serious mess with it.

Bug: Stored XSS (High Security Risk)
Area: Comments
Test on browsers: All browsers

How to reproduce?
- Just open a video and type this in comment: <script>alert("XSS By Ali 
Raza")</script>

- '' << single quotes in attacking javascript is not accepting as it colides 
with comment javascript (Observe by console).

Live Example: http://v2.7-beta.clipbucket.com/watch_video.php?v=NOXA48GY8UOW

P.S: Sorry I mess with three videos in order to test vulnerability.

Appreciation: You did well enough work with CB. This is a painless script I 
ever met with but having security issues. Please audit CB completely again and 
if you allow than I'll happy to contribute in security matter as I recently 
worked on defense mechanism specially on XSS.

Regards,
Ali.

Original issue reported on code.google.com by dev.alir...@gmail.com on 17 Dec 2014 at 12:09

Attachments:

• [Stored XSS in ClipBucket.PNG](https://storage.googleapis.com/google-code-attachments/clipbucket/issue-488/comment-0/Stored XSS in ClipBucket.PNG)

[GoogleCodeExporter]

Original comment by arslan...@gmail.com on 24 Feb 2015 at 10:51

• Changed state: Accepted

[GoogleCodeExporter]

comments are sent by mysqlclean

Original comment by adventiv...@gmail.com on 24 Feb 2015 at 1:26

• Changed state: Fixed

[GoogleCodeExporter]

Great! and great script :)

Original comment by dev.alir...@gmail.com on 24 Feb 2015 at 1:33