Skip to content
This repository has been archived by the owner. It is now read-only.

Stored Cross-site Scripting in Tab Name(Already tested on commit c1d59a7) #196

Closed
gaohuailiang opened this issue May 31, 2017 · 0 comments

Comments

Projects
None yet
1 participant
@gaohuailiang
Copy link

commented May 31, 2017

Hi, I found a stored cross-site scripting vulnerability in the tab_name parameter. And I also test it on github latest develop version(commit c1d59a7), it is vulnerable too. The POC is show below.

Administrator Login->Menu->Administrator->Default Dashboard->Config->Add new Tab->Enter crafted lable->Done
img_1
When other Administrator Login to the Dashboard, the script code will be executed.
img_2

E-Mail: gaohuailiang@huawei.com
Discovered by: Huawei Weiran Labs

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
You can’t perform that action at this time.