Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Possible XSS vulnerability #3

Open
enferas opened this issue Nov 13, 2021 · 2 comments
Open

Possible XSS vulnerability #3

enferas opened this issue Nov 13, 2021 · 2 comments

Comments

@enferas
Copy link

enferas commented Nov 13, 2021

Hello,

I would like to report for XSS vulnerability.

The path of the vulnerability:

In file ytproxy/index.php

// line 81
$args = array_merge( (array) $phrases[$_GET['e']], $args);
$error = call_user_func_array('sprintf',$args);

// line 91
$themeReplace['error'] = '<div id="error">' . $error . '</div>';

// line 151
echo loadTemplate('main', $vars);

In file ytproxy/includes/init.php line 584

function loadTemplate($file, $vars=array()) {
        // ...
	  
	# Apply theme replacements to template
	$template = replaceThemeTags($template);

	# Return HTML
	return $template;
}

In file ytproxy/includes/init.php line 646

function replaceThemeTags($template) {

	global $themeReplace;

	if ( ! empty($themeReplace) ) {

		foreach ( $themeReplace as $tag => $value ) {

			# Make the replacement
			$template = str_replace('<!--[' . $tag . ']-->', $value, $template);

			# And for backwards compatability - will be removed at next major release
			if ( COMPATABILITY_MODE ) {
				$template = str_replace('<!--[glype:' . $tag . ']-->', $value, $template);
			}

		}

	}

	# Return updated
	return $template;
}
@zxq2233
Copy link
Owner

zxq2233 commented Nov 14, 2021

Thank you, this is just an outdated project.
This is the referenced glype code, which is not active now.

@enferas
Copy link
Author

enferas commented Dec 2, 2021

Thank you for your response.

CVE-2021-43692 is assigned for this vulnerability.

An unspecified version of youtube-php-mirroring is affected by a Cross Site Scripting (XSS) vulnerability in file ytproxy/index.php.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants