pull down to refresh

82 sats \ 5 replies \ @optimism 15 Apr \ on: New Music Streaming platform (Lightning enabled, empowering artists) Music lightning Education

tf is that breh

write
compose
13 sats \ 0 replies \ @NEEDcreations OP 17 Apr

hey @optimism thx for the report. I am working with some devs who have been helping me fix vulnerabilities, and this is one that was injected as a proof of concept. It's cleaned up now. Thanks for checking out Bitcoin Beats!

reply
82 sats \ 3 replies \ @sox 15 Apr
'<div style="width:44px;...;">' + ((t.coverArt || t.coverUrl) ? '<img src="' + _safeCover(t.coverUrl || t.coverArt) + '" style="width:100%;height:100%;object-fit:cover;">' : (t.genre === 'podcast' ? '🎙️' : '🎵')) + '</div>'

happened with image upload, values are inserted raw inside an HTML string.

resulting in:

<img src="" onerror="alert('beats-update-XSS')" style="width:100%;height:100%;object-fit:cover;">

or

<img src="" onerror="alert('beats-XSS-by-ProofOfCash')" style="width:100%;height:100%;object-fit:cover;">

it's even branded ProofOfCash lol

reply
13 sats \ 0 replies \ @NEEDcreations OP 17 Apr

I am working with some devs who have been helping me fix vulnerabilities, and this is one that was injected as a proof of concept. It's cleaned up now. Thanks for checking out Bitcoin Beats! @sox

reply
13 sats \ 1 reply \ @optimism 15 Apr

why?

reply
13 sats \ 0 replies \ @NEEDcreations OP 17 Apr

ProofOfCash is one of the white hat hackers nyms haha

reply