[wp-trac] [WordPress Trac] #47163: Stored XSS on Comments
WordPress Trac
noreply at wordpress.org
Tue May 7 06:36:51 UTC 2019
#47163: Stored XSS on Comments
--------------------------+----------------------
Reporter: down3rz | Owner: (none)
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version:
Severity: normal | Resolution: invalid
Keywords: | Focuses:
--------------------------+----------------------
Changes (by ocean90):
* status: new => closed
* severity: major => normal
* version: 5.1.1 =>
* milestone: Awaiting Review =>
* resolution: => invalid
Old description:
> The script i used was :
>
> {{{
> <a onmouseover=alert('XSS')>Click me</A>
> }}}
>
> I executed this script on comments and this showed up
> [[Image(http://justpwn.com/wp-content/uploads/2019/05/t1.jpg)]]
>
> Im sure this is severe and im waiting for the fix, thank you im not good
> in writing write-ups.
New description:
The script i used was :
{{{
<a onmouseover=alert('XSS')>Click me</A>
}}}
I executed this script on comments and this showed up
Im sure this is severe and im waiting for the fix, thank you im not good
in writing write-ups.
--
Comment:
Hello, when writing this ticket you should have seen this notice:
> **Do not report potential security vulnerabilities here.**
> See the [https://make.wordpress.org/core/handbook/reporting-security-
vulnerabilities/ Security FAQ] and visit the
[https://hackerone.com/wordpress WordPress HackerOne program].
Please also read [https://make.wordpress.org/core/handbook/testing
/reporting-security-vulnerabilities/#why-are-some-users-allowed-to-post-
unfiltered-html Why are some users allowed to post unfiltered HTML?].
--
Ticket URL: <https://core.trac.wordpress.org/ticket/47163#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list