Bug: Description fields are vulnerable to XSS
177 °C
Bug #23
Description fields are vulnerable to XSS
| Status: | Closed |
| Priority: |
Critical |
| Added by: |
|
| Assigned to: |
Unassigned
|
| Due date: | |
| Reported for: |
Steps to Reproduce
- Create an issue or project
- In the description field, insert the XSS of your choice
- Insert any other content into the description field
- See your inserted JS affect the page
Explanation
XSS In description boxes. This applies to both project descriptions and issue descriptions. I've been poking around a bit, and it seems like any field that supports markdown is vulnerable. Thankfully, other fields seem unaffected.
It doesn't seem like there's any sanitization at all.
This is a link to one of the issues I opened in a test project. A few XSS tests in that project, nothing malicious though:
https://app.betahub.io/projects/190/issues/4 (this one's stupid but fun)
Also, check your console ;)
<script>console.log("Hello There :)")</script>
Watchers
Screenshots
None
Video Clips
None
Log Files
None
Device
Device information is not visible to you
This project restricts device information visibility.
[ #1 ]
by
[ #2 ]
by
[ #3 ]
by
Loading comments...
Loading comments...
3 comments loaded
You need to join this project to comment on issues.
Join Project