Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Security-Issue on "CyberWorks 3" #86
i'm a IT-Developer and Websecurity-Pentester.
With this vulnerability you only need the permission to write Notes. If so, you can inject malicous Code into the Website, which will be execute on every Computer that will visit the prepared User-Note (also Admins).
If further information is needed, just respond.
Proof of concept: