XSS in topics because of bandcamp preview engine vulnerability

Disclosed: 2017-01-20 23:50:12 By skavans To discourse

High

Vulnerability Details

1. Load http://try.discourse.org 2. Click "New topic" 3. Enter this payload https://89.223.28.48/bandcamp.com/album/index.html?XSSa2 to field with placeholder "Type title or paste a link here" 4. Wait for the preview engine to parse the link 4. XSS will fire {F151439} You should sanitize external data in this engine and replace *matches_regexp* from `^https?:\/\/.*bandcamp\.com\/album\/` to `^https?:\/\/.*\.bandcamp\.com\/album\/` to fix the issue.

Actions

View on HackerOne

Report Stats

Report ID: 197443
State: Closed
Substate: resolved
Upvotes: 15

XSS in topics because of bandcamp preview engine vulnerability

Vulnerability Details

Actions

Report Stats

Share this report