Skip to content
This repository has been archived by the owner on Jan 5, 2023. It is now read-only.

Cross Site Scripting (XSS) in Install #86

Closed
sinemsahn opened this issue Oct 7, 2022 · 1 comment
Closed

Cross Site Scripting (XSS) in Install #86

sinemsahn opened this issue Oct 7, 2022 · 1 comment

Comments

@sinemsahn
Copy link

sinemsahn commented Oct 7, 2022

Describe the bug
Cross Site Scripting (XSS) in the username section of the install page.
version: 2.1.0

To Reproduce
Steps to reproduce the behavior:

  1. Go to 'CMS Install Page'
  2. Insert into a XSS payload in username section
  3. And XSS save
  4. See error
<script>alert(1)</script>

image
image

OS: all
Browser : all
Version : all

@sinemsahn
Copy link
Author

sinemsahn commented Oct 7, 2022

@patkon
Can you help me check issue this?
Looking forward to hearing from you.
Thank you .

@patkon patkon closed this as completed Jan 5, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants