Flash based XSS #12161

MantisSTS · 2014-11-19T10:26:23Z

Hi guys,

Wasn't sure where to report this, the main site didn't have a clear email/section for reporting security vulnerabilities that I could find.

So after testing MODX for some basic vulnerabilities, I came across the FileAPI.flash.image.swf file had a parameter called scale & callback.

The callback parameter is vulnerable to XSS, if you close off the try/catch block, then you can execute an alert:

//MODX/manager/assets/fileapi/FileAPI.flash.image.swf?scale=onw1b&callback=%29}catch%28e%29{};alert%281%29;//

I hope this can be of use to you guys.

Thanks.

adamwintle · 2016-01-13T23:04:33Z

this seems pretty serious and now a few years old, is it still an issue? cc @opengeek

opengeek · 2016-01-13T23:32:15Z

What is fileapi?

adamwintle · 2016-01-13T23:34:42Z

OptimusCrime · 2016-01-18T20:54:25Z

christianseel · 2016-02-25T09:41:27Z

Can we please fix this before 2.5.0-pl?

MantisSTS · 2016-02-25T10:10:17Z

Want me to retest this when I get a second?

theboxer · 2016-02-25T10:11:44Z

Yes, please, it worked here, hopefully it will for you as well

rtripault added area-security urgent The issue requires attention and has higher priority over others. labels Jan 11, 2015

theboxer self-assigned this Feb 25, 2016

theboxer closed this as completed in 9ea8540 Feb 25, 2016

Provide feedback