Lucene search
P0cas4532A0AC-4E7C-4FCF-9FE3-630E132325C0HistoryDec 29, 2021 - 3:53 p.m.
Cross-site Scripting (XSS) - Stored in convos-chat/convos
2021-12-2915:53:03
p0cas
www.huntr.dev
6
0.001 Low
EPSS
Percentile
43.4%
Description
The Convos is an open source multi-user chat that runs in a web browser. Characters starting with “https://” in the chat window create <a> tag. Stored XSS vulnerability using onfocus and autofocus occurs because escaping exists for “<” or “>” but escaping for double quarter does not exist.
Proof of Concept
Username : [email protected]
Password : qwer12211@
1. Open the https://demo.convos.chat/login and Login as to above account
2. Go to https://demo.convos.chat/chat/irc-demo-irc-convos/<chat room name>
3. In chat room. Enter the https://x."//onfocus="alert(document.domain)"//autofocus="" b="
Video : https://www.youtube.com/watch?v=L1Be-D-GVmQ
Impact
Through this vulnerability, an attacker is capable to execute malicious scripts.
Related
nvd
nvd
CVE-2022-21649
2022-01-04 21:15:07
cve
cve
CVE-2022-21649
2022-01-04 21:15:07
cvelist
cvelist
CVE-2022-21649 Stored XSS via attribute in convos
2022-01-04 20:40:20
prion
prion
Cross site scripting
2022-01-04 21:15:00
osv
osv
CVE-2022-21649
2022-01-04 21:15:07