Cross-Site Scripting in swagger-ui

2020-09-01T15:30:58
ID GHSA-P239-93F7-H6XF
Type github
Reporter GitHub Advisory Database
Modified 2021-09-23T21:32:17

Description

Affected versions of swagger-ui contain a cross-site scripting vulnerability in the key names of a specific nested object in the JSON document.

Proof of Concept

The vulnerable object structure is: { "definitions": { "arbitraryVal": { "properties": { "<INJECTABLE_KEY_NAME>": "LoremIpsum" } } } } Malicious JSON documents can be loaded in by providing a URL to them in the url query string parameter.

Recommendation

Update to version 2.2.1 or later.