Versions of webtorrent
prior to 0.107.6 are vulnerable to Cross-Site Scripting. webtorrent
servers started with torrent.createServer()
lists a torrent’s title and files in the index page without sanitization. This allows attackers to execute arbitrary JavaScript in the victim’s browser through files with names containing the malicious payload. The issue is mitigated due to the fact that the server only allows fetching data pieces from the torrent.
Upgrade to version 0.107.6 or later.
CPE | Name | Operator | Version |
---|---|---|---|
webtorrent | lt | 0.107.6 |