PT-2023-10258 · Walrusirc · Walrusirc

Name of the Vulnerable Software and Affected Versions: juju2143 WalrusIRC version 0.0.2 Description: A problem was found in the function parseLinks of the file public/parser.js. The manipulation of the argument text leads to cross-site scripting. The attack may be initiated remotely...

WalrusIRC 跨站脚本漏洞

WalrusIRC is an alternative OmnomIRC client built with node.js and socket.io by J.P. Yuki Savard, an individual developer. juju2143 A cross-site scripting vulnerability exists in WalrusIRC versions prior to 0.0.3, which stems from an issue with the function parseLinks in the file public/parser.js...