JavaScript injection vulnerability #880
Comments
|
yow, thanks for finding and reporting! will fix. |
|
fortunately, bridgy has no login, user sessions, or any other browser-side credentials or state that could be exploited with this.... but still, definitely worth fixing regardless. |
|
Thanks for taking care of this and also thank you for having created this neat service 👍 |
snarfed
added a commit
that referenced
this issue
Jul 15, 2019
|
thanks again @freekmurze! |
|
example: https://brid.gy/twitter/freekmurze?responses_before=2019-07-14T01:08:21.055275#responses note the escaped |
snarfed
added a commit
to snarfed/webutil
that referenced
this issue
Jul 16, 2019
helps prevent XSSes. for snarfed/bridgy#880
snarfed
added a commit
to snarfed/granary
that referenced
this issue
Jul 16, 2019
snarfed
added a commit
that referenced
this issue
Jul 16, 2019
jamietanna
added a commit
to jamietanna/bridgy
that referenced
this issue
Apr 23, 2020
As part of snarfed#880, we added a check to ensure that we would not be subject to Cross-Site Scripting attacks (XSS). However, as noted in snarfed#936, a post that does contain HTML is still being rejected. The simplest way to get around this is to escape the tags with the HTML entities corresponding with them, so they can be safely rendered. Closes snarfed#936.
This was referenced Apr 23, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When somebody creates a webmention by tweeting some JavaScript code, that JavaScript code is actually being executed.
You can find an example on my account: https://brid.gy/twitter/freekmurze
Look for the interaction with this tweet: https://twitter.com/enunomaduro/status/1150157457664008192
The text was updated successfully, but these errors were encountered: