Able to delete a post by turning it into a comment using XSS evasion test

in #utopian-io7 years ago (edited)

Expected behavior

Posts in the Steemit should not be deleted. Only comments can be deleted.

Actual behavior

By using XSS evasion techniques, a post can turn into a comment and allow the user to delete it.

How to reproduce

  1. Add a new post
  2. Add any content you want
  3. Edit the post
  4. In content, add the following:
<BR SIZE="&{alert('XSS')}">
  1. Post it with the self upvoted
  2. Unvoted
  3. Delete

Environment

  • Browser: Google Chrome Version 63.0.3239.132 (Official Build) (64-bit)
  • Operating system: macOS High Sierra

Visual Reproduction of the bug

deleteposts.gif

Proof of transactions

Screen Shot 2018-01-19 at 3.57.29 AM.png

Thanks to the creator of Steemd for creating such great tool. Without this tool, I believe I wouldn't be able to reproduce this bug.


Posted on Utopian.io - Rewarding Open Source Contributors

#steemit #bughunting #development #programmer
7 years ago in #utopian-io by
$24.76
  • Past Payouts $24.76, 0.00 TRX
  • - Author $17.60, 0.00 TRX
  • - Curators $7.16, 0.00 TRX
13 votes
Reply 6
Sort:  
  • Trending
    • [-]
     7 years ago 

    Hey @jaysermendez I am @utopian-io. I have just upvoted you!

    Achievements

    • You have less than 500 followers. Just gave you a gift to help you succeed!
    • Seems like you contribute quite often. AMAZING!

    Suggestions

    • Contribute more often to get higher and higher rewards. I wish to see you often!
    • Work on your followers to increase the votes/rewards. I follow what humans do and my vote is mainly based on that. Good luck!

    Get Noticed!

    • Did you know project owners can manually vote with their own voting power or by voting power delegated to their projects? Ask the project owner to review your contributions!

    Community-Driven Witness!

    I am the first and only Steem Community-Driven Witness. Participate on Discord. Lets GROW TOGETHER!

    mooncryption-utopian-witness-gif

    Up-vote this comment to grow my power and help Open Source contributions like this one. Want to chat? Join me on Discord https://discord.gg/Pc8HG9x

    [-]
     7 years ago 

    good job hahhahahha share share steem

    [-]
     7 years ago 

    Hahahha I believe it will be fixed

    [-]
     7 years ago 

    Great find and nice clear report!

    $0.00
      Reply
      [-]
       7 years ago 

      Thank you for the contribution. It has been approved.

      • Some bugs are features! You finally discovered the delete button! ;-)
      • Very good use of an animated gif to show us the issue.
      • I also liked how you use steemd.com to show what happened. Perhaps a mention of the source would be nice to the creator of steemd for his efforts.

      You can contact us on Discord.
      [utopian-moderator]

      $0.00
        Reply
        [-]
         7 years ago 

        Hahaha so this is not a bug but a hidden feature :P Updating it to add honor the creator of Steemd.

        $0.03
        • Past Payouts $0.03, 0.00 TRX
        • - Author $0.02, 0.00 TRX
        • - Curators $0.01, 0.00 TRX
        1 vote
        Reply

        Coin Marketplace

        STEEM 0.19
        TRX 0.15
        JST 0.029
        BTC 63643.10
        ETH 2582.85
        USDT 1.00
        SBD 2.75