Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Security bug - Reflected XSS #53
I try to register on your forum for reporting this bug, but my registration request didn't responded.
Bug Title: Reflected XSS
Product(s): MailCleaner CE 2018.08 & MailCleaner CE 2018.09
Tested on: Centos7/Firefox & Win10/Firefox
PoC URI: https://[IP]/admin/login/user/message/%3Csvg%20onload=alert(%22@darknetguy%22)%3E
I confirm your bug. I'll deploy in few minutes a bug fix.
Thank you again for your contribution @Fadavvi !