CVE-2022-21650

By Year
2022
CVE-2022-21650

Track security vulnerabilities

Convos is an open source multi-user chat that runs in a web browser. You can't use SVG extension in Convos' chat window, but you can upload a file with an .html extension. By uploading an SVG file with an html extension the upload filter can be bypassed. This causes Stored XSS. Also, after uploading a file the XSS attack is triggered upon a user viewing the file. Through this vulnerability, an attacker is capable to execute malicious scripts. Users are advised to update as soon as possible.

Published at

2022-01-04

12 days ago

Modified

2022-01-04

12 days ago

2022

Year

The year of the turtle

https://github.com/convos-chat/convos/security/advisories/GHSA-mm2v-4v7g-m695

CONFIRM:https://github.com/convos-chat/convos/security/advisories/GHSA-mm2v-4v7g-m695

Read More about it More info

https://blog.pocas.kr/2021/12/30/2021-12-30-s-xss-convos-chat/#First-vulnerability

MISC:https://blog.pocas.kr/2021/12/30/2021-12-30-s-xss-convos-chat/#First-vulnerability

Read More about it More info

https://github.com/convos-chat/convos/commit/5c0a1ec9a2c147bc3b63fd5a48da5f32e18fe5df

MISC:https://github.com/convos-chat/convos/commit/5c0a1ec9a2c147bc3b63fd5a48da5f32e18fe5df

Read More about it More info

https://www.huntr.dev/bounties/ae424798-de01-4972-b73b-2db674f82368/

MISC:https://www.huntr.dev/bounties/ae424798-de01-4972-b73b-2db674f82368/

Read More about it More info

Vulnerability RAW

{
	"Title": {
		"_text": "CVE-2022-21650"
	},
	"Notes": {
		"Note": [
			{
				"_text": "Convos is an open source multi-user chat that runs in a web browser. You can't use SVG extension in Convos' chat window, but you can upload a file with an .html extension. By uploading an SVG file with an html extension the upload filter can be bypassed. This causes Stored XSS. Also, after uploading a file the XSS attack is triggered upon a user viewing the file. Through this vulnerability, an attacker is capable to execute malicious scripts. Users are advised to update as soon as possible."
			},
			{
				"_text": "2022-01-04"
			},
			{
				"_text": "2022-01-04"
			}
		]
	},
	"CVE": {
		"_text": "CVE-2022-21650"
	},
	"References": {
		"Reference": [
			{
				"URL": {
					"_text": "https://github.com/convos-chat/convos/security/advisories/GHSA-mm2v-4v7g-m695"
				},
				"Description": {
					"_text": "CONFIRM:https://github.com/convos-chat/convos/security/advisories/GHSA-mm2v-4v7g-m695"
				}
			},
			{
				"URL": {
					"_text": "https://blog.pocas.kr/2021/12/30/2021-12-30-s-xss-convos-chat/#First-vulnerability"
				},
				"Description": {
					"_text": "MISC:https://blog.pocas.kr/2021/12/30/2021-12-30-s-xss-convos-chat/#First-vulnerability"
				}
			},
			{
				"URL": {
					"_text": "https://github.com/convos-chat/convos/commit/5c0a1ec9a2c147bc3b63fd5a48da5f32e18fe5df"
				},
				"Description": {
					"_text": "MISC:https://github.com/convos-chat/convos/commit/5c0a1ec9a2c147bc3b63fd5a48da5f32e18fe5df"
				}
			},
			{
				"URL": {
					"_text": "https://www.huntr.dev/bounties/ae424798-de01-4972-b73b-2db674f82368/"
				},
				"Description": {
					"_text": "MISC:https://www.huntr.dev/bounties/ae424798-de01-4972-b73b-2db674f82368/"
				}
			}
		]
	}
}