VBScript Content Injection

2015-01-22T17:33:48
ID NODEJS:24
Type nodejs
Reporter Xiao Long
Modified 2018-05-08T14:27:02

Description

Overview

Versions 0.3.2 and earlier of marked are affected by a cross-site scripting vulnerability even when sanitize:true is set.

Proof of Concept ( IE10 Compatibility Mode Only )

[xss link](vbscript:alert(1))

will get a link

<a href="vbscript:alert(1)">xss link</a>

Recommendation

Update to version 0.3.3 or later.

References

Issue 492