New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Possible XSS Vulnerability #2252
Comments
yes this is bug |
Can you check is this issue exists in https://github.com/myvesta/vesta fork? |
This was referenced Jul 2, 2022
Closed
proposed a fix: #2258 fwiw VestaCP development has largely halted, notable maintained forks are https://github.com/hestiacp/hestiacp and https://github.com/myvesta/vesta |
anton-reutov
added a commit
that referenced
this issue
Jul 27, 2022
Thank you guys for the help |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello,
I would like to report for possible XSS vulnerability.
In file https://github.com/serghey-rodin/vesta/blob/master/web/api/v1/upload/UploadHandler.php
the source in function post
function handle_file_upload
function generate_response
Finally, the sink in function body
The text was updated successfully, but these errors were encountered: