[BUG] Unencoded Content in Search Leads to JavaScript Execution Risk in autocomplete-js #416

wjhwjhn · 2024-02-16T14:55:14Z

When performing a search, if the previewed article contains <script> tags, passing it to autocomplete-js results in the execution of the script.

Before adding the <${highlightTag}> markers, encode the article content using the encodeURIComponent function.
Reference location: theme.js L237

Follow the steps to reproduce and alert box pops up displaying "1".

The location that causes code execution, in autocomplete-js

No response

Steps to Reproduce

Insert an article containing a <script> tag. For example:

# TEST

```html
<script>
 alert("1");   
</script>
```

The text was updated successfully, but these errors were encountered:

wjhwjhn added the bug Something isn't working label Feb 16, 2024

Lruihao self-assigned this Apr 25, 2024

Lruihao added this to the v0.3.x milestone Apr 25, 2024

Lruihao added this to Roadmap of FixIt Apr 25, 2024

github-project-automation bot moved this to To do in Roadmap of FixIt Apr 25, 2024

Lruihao moved this from To do to Done in Roadmap of FixIt Apr 25, 2024

Lruihao closed this as completed in f4e8bab Apr 25, 2024