Steemnova - Fix persistent XSS vulnerability in alliance pages

mwfiae (60) in utopian-io • 7 years ago (edited)

Bug Fixes

What was the issue(s)?

As described here there was a critical security bug in the steemnova browsergame.

It was caused by the custom bbcode parser that was implemented in steemnova.

Proof of Concept:

[url=javascript:alert(String.fromCharCode(88,83,83))]http://google.com/[/url]
Inserting this piece of code into the alliance description (something basically anybody can do by creating his/her own alliance) would result in the String "XSS" being displayed for the user. Of course a lot more evil actions could also be executed in the users name.

What was the solution?

I replaced the old custom logic:

With a premade and well established library:

As well as some boilerplate code to make it all work.

Unfortunatly this change caused another bug: all linebreaks would disappear from the alliance pages.
But this was soon spotted and also fixed by me here.

Acknowledgements

I (once again) want to thank:

@louis88 for finding this bug and helping me with testing the bugfix.
@mys who cooperated with us so this bugfix could be quickly released to public before it could be abused!

Posted on Utopian.io - Rewarding Open Source Contributors

utopian-io steemnova bugfix xss

7 years ago by mwfiae (60)

$140.87

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!

Sort Order:

Trending

[-]

cranium (76) · 7 years ago

I believe that STEEMNOVA has a great future. I hope this project will soon be noticed by whales and it will be much more interesting to play. Good luck to you and Love.

Я верю что в STEEMNOVA отличное будущее. надеюсь этот проэкт скоро заметят киты и играть будет намного интересней. Удачи Вам и Любви.

$0.21

1 vote

[-]

utopian-io (71) · 7 years ago

Hey @mwfiae I am @utopian-io. I have just upvoted you!

Achievements

People loved what you did here. GREAT JOB!
You have less than 500 followers. Just gave you a gift to help you succeed!
Seems like you contribute quite often. AMAZING!

Utopian Witness!

Participate on Discord. Lets GROW TOGETHER!

Up-vote this comment to grow my power and help Open Source contributions like this one. Want to chat? Join me on Discord https://discord.gg/Pc8HG9x

$0.17

1 vote

[-]

mys (62) · 7 years ago

That was serious security issue. Good job @louis88 and @mwfiae! Thank You for cooperation.

$0.11

1 vote

[-]

mwfiae (60) · 7 years ago

Thank you for your professional way dealing with this! :)

$0.00

[-]

cretcrot (39) · 7 years ago

Vote me please

$0.00

1 vote

[-]

mwfiae (60) · 7 years ago

Done

$0.00

[-]

steemitboard (66) · 7 years ago

Congratulations @mwfiae! You have completed some achievement on Steemit and have been rewarded with new badge(s) :

Award for the number of upvotes

Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click here

If you no longer want to receive notifications, reply to this comment with the word STOP

Upvote this notification to help all Steemit users. Learn why here!

$0.00

[-]

steemitboard (66) · 6 years ago

Congratulations @mwfiae! You have completed some achievement on Steemit and have been rewarded with new badge(s) :

Award for the number of comments
Award for the number of comments received
Award for the number of upvotes received

Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click here

If you no longer want to receive notifications, reply to this comment with the word STOP

Upvote this notification to help all Steemit users. Learn why here!

$0.00

Steemnova - Fix persistent XSS vulnerability in alliance pages

Bug Fixes

What was the issue(s)?

What was the solution?

Links

Acknowledgements

Hey @mwfiae I am @utopian-io. I have just upvoted you!

Achievements

Utopian Witness!