XSS - Githubissues

taobataoma / meanTorrent

meanTorrent - MEAN.JS BitTorrent Private Tracker - Full-Stack JavaScript Using MongoDB, Express, AngularJS, and Node.js, A BitTorrent Private Tracker CMS with Multilingual, and IRC announce support, CloudFlare support. Demo at:

https://mean.im

Other

489 stars 146 forks source link

XSS #80

Open deed02392 opened 5 years ago

deed02392 commented 5 years ago

Very basic XSS vector identified.

Executes on the torrent details page.

chrome_2018-09-28_16-41-03 chrome_2018-09-28_16-41-19

taobataoma commented 5 years ago

@dalelotts Thanks, i`ll fixed it later.

Mirojnik commented 4 years ago

@taobataoma Hello,

Has this issue been resolved ?

Thanks.