openupload-devel Mailing List for Open Upload

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hi there, i found vulnerability ( stored XSS )To make this POC, i just install Openupload 0.4.3 from http://openupload.sourceforge.net and configure it using nginx/php-fpm.

I created a file called "<input autofocus onfocus=alert(1)>.png" then i uploaded it, and there is 2 ways to exploit it :
1 )  send link to your uploaded file to admin by email for exemple2 ) let admin navigate himself into`http://localhost/index.php?action=adminfiles`

could you correct it?
if you have any questions, do not hesitate
good evening to you

Mike - Pentester for @OrangeCyberdef  &
and CTF player for @Inshallhack

Sent with ProtonMail Secure Email.

2008	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct (1)	Nov (11)	Dec (11)
2009	Jan (11)	Feb (9)	Mar (1)	Apr (32)	May (31)	Jun (6)	Jul (9)	Aug (108)	Sep (27)	Oct	Nov (9)	Dec (9)
2010	Jan (16)	Feb (38)	Mar (24)	Apr (2)	May (15)	Jun (2)	Jul (3)	Aug (4)	Sep (12)	Oct (21)	Nov (4)	Dec (17)
2011	Jan (7)	Feb (6)	Mar (26)	Apr (35)	May (6)	Jun (7)	Jul (1)	Aug (12)	Sep (5)	Oct (17)	Nov (6)	Dec (7)
2012	Jan (28)	Feb (17)	Mar (18)	Apr (2)	May (6)	Jun (15)	Jul (3)	Aug (3)	Sep (13)	Oct	Nov (6)	Dec (6)
2013	Jan (13)	Feb (2)	Mar	Apr (2)	May	Jun	Jul (3)	Aug	Sep	Oct	Nov (1)	Dec
2014	Jan (2)	Feb	Mar (2)	Apr (1)	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec (2)
2015	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct (2)	Nov	Dec
2016	Jan	Feb	Mar	Apr	May	Jun (4)	Jul	Aug	Sep	Oct	Nov	Dec
2019	Jan	Feb	Mar	Apr	May	Jun (1)	Jul	Aug	Sep	Oct	Nov	Dec
2020	Jan	Feb	Mar	Apr (1)	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec

openupload-devel Mailing List for Open Upload

openupload-devel — Development and general discussion