https://bugs.winehq.org/show_bug.cgi?id=44764
Bug ID: 44764 Summary: Xss in your wewbsite Product: WineHQ Bugzilla Version: unspecified Hardware: x86 OS: Linux Status: UNCONFIRMED Severity: critical Priority: P2 Component: bugzilla-unknown Assignee: wine-bugs@winehq.org Reporter: whitehatbangladeshteam@gmail.com CC: austinenglish@gmail.com Distribution: ---
Hi!
I Am Wamim 19 Year Old Bangladeshi White Hat hacker There's a xss on your website
Affected URL :
https://www.winehq.org/news/2017103101/
Proof of Concept URLs for XSS :
https://www.winehq.org/news/2017103101/x%22%3E%3CsvG%20onLoad=prompt(9)%3E
POC AS Screenshot
Copy and paste it any browser Proof OF Concept with Firefox
Thanks ALI WAMIM KHAN
https://bugs.winehq.org/show_bug.cgi?id=44764
Fabian Maurer dark.shadow4@web.de changed:
What |Removed |Added ---------------------------------------------------------------------------- Ever confirmed|0 |1 Component|bugzilla-unknown |www-unknown Product|WineHQ Bugzilla |WineHQ.org CC| |dark.shadow4@web.de Status|UNCONFIRMED |NEW
--- Comment #1 from Fabian Maurer dark.shadow4@web.de --- Thanks for reporting, confirming.
https://bugs.winehq.org/show_bug.cgi?id=44764
Michael Stefaniuc mstefani@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|NEW |RESOLVED CC| |mstefani@winehq.org
--- Comment #2 from Michael Stefaniuc mstefani@winehq.org --- This should be fixed now: https://source.winehq.org/git/website.git/?a=commit;h=5cd195b1ac9ff47e92b8b3...
https://bugs.winehq.org/show_bug.cgi?id=44764
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #3 from Austin English austinenglish@gmail.com --- Closing.
-
wine-bugs@winehq.org