Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

后台添加文章XSS,上传头像处可以上传任意文件 #336

Closed
5 of 7 tasks
T-pod opened this issue Oct 15, 2019 · 1 comment
Closed
5 of 7 tasks

后台添加文章XSS,上传头像处可以上传任意文件 #336

T-pod opened this issue Oct 15, 2019 · 1 comment
Labels
kind/support Categorizes issue or PR as a support question. triage/unresolved Indicates an issue that can not or will not be resolved. vulnerability Vulnerability

Comments

@T-pod
Copy link

T-pod commented Oct 15, 2019

我确定我已经查看了 (标注[ ][x])


我要申请 (标注[ ][x])

  • BUG 反馈
  • 添加新的特性或者功能
  • 请求技术支持
    在后台添加博客文章时,代码中没有对插入的内容进行过滤和限制,可以插入XSS语句,前台用户访问便可以触发XSS,存在安全风险。
    image
    image
    在后台上传头像时,抓取上传文件的数据包,修改文件后缀,后端代码(halo/blob/master/src/main/java/run/halo/app/service/impl/AttachmentServiceImpl.java)没有限制,可以上传任意后缀的文件,导致存在安全风险。
    image
    image
@JohnNiang JohnNiang added the kind/support Categorizes issue or PR as a support question. label Oct 15, 2019
@ruibaby
Copy link
Member

ruibaby commented Oct 15, 2019

@T-pod 感谢你的反馈,我们会进一步修复提出的问题。

@JohnNiang JohnNiang added vulnerability Vulnerability triage/unresolved Indicates an issue that can not or will not be resolved. labels Oct 16, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
kind/support Categorizes issue or PR as a support question. triage/unresolved Indicates an issue that can not or will not be resolved. vulnerability Vulnerability
Projects
None yet
Development

No branches or pull requests

3 participants