Closed Bug 904943 Opened 12 years ago Closed 12 years ago

XSS: Popcorn events

Categories

(Webmaker Graveyard :: General, defect)

Product:
Webmaker Graveyard
Component:
General
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 866026

People

(Reporter: gazblotz, Unassigned)

Details

(Keywords: reporter-external, Whiteboard: [site:popcorn.webmaker.org][reporter-external])

Attachments

(1 file)

Proof
160.29 KB, image/png
Details
Attached image Proof
User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.95 Safari/537.36 Steps to reproduce: Logged in Create a Project Add a Text Add a jS Payload Actual results: Script Executed Expected results: Input should sanitized by the Application
Please see https://developer.mozilla.org/en-US/docs/Bug_writing_guidelines for information about filing a good bug report. From the screen shot this is in popcorn.webmaker.org/editor/ (events) thus a duplicate of bug 866026
Status: UNCONFIRMED → RESOLVED
Closed: 12 years ago
Flags: sec-bounty-
Resolution: --- → DUPLICATE
Summary: Cross site Scripting → XSS: Popcorn events
Whiteboard: [site:popcorn.webmaker.org][reporter-external]
Component: Projects → General
Group: websites-security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: