Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

In tree mode, there exists Stored XSS. #1029

Closed
onemoreflag opened this issue Jul 1, 2020 · 1 comment
Closed

In tree mode, there exists Stored XSS. #1029

onemoreflag opened this issue Jul 1, 2020 · 1 comment
Labels

Comments

@onemoreflag
Copy link

Insert a poc
https://jsoneditoronline.org/#right=local.xobutu&left=local.pawuqa
image
click the Drop-down list box
image
click the input tag
image

@josdejong
Copy link
Owner

Thanks a lot for reporting @onemoreflag, this is serious. I've just published a fix. Underlying cause was usage of innerHTML here and there in the code base, I've replaced all occurrences or made sure they are being feed with escaped HTML only.

Fixed now in jsoneditor@9.0.2 and https://jsoneditoronline.org v5.5.7.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
2 participants