beef/extensions at 098b9a24bf7f826c5a0a1d95de15b1dd0996a2e0 - beef - Hiddenden.cafe Gitea

Hiddenden/beef

Files

History

Touhid M Shaikh 098b9a24bf html_escape prevent code execution .

I noticed when i put HTML content in "beef-xss/config.yaml" file in Version Field.
And Restart Beef(beef_start.png) and Go to Admin Panel in my browser, then my html interpreter and execute.
This issue occurs bcz of "/beef-xss/extensions/admin_ui/controllers/panel/index.html" in this file insecure code implementetion.

NOW html_escape prevent code execution.

2017-08-25 15:41:31 +05:30

..

html_escape prevent code execution .

2017-08-25 15:41:31 +05:30

Updated Copyright information

2016-12-29 15:50:13 +10:00

Add comment warning not to use the console extension

2017-06-30 06:31:11 +00:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Update links on demo pages

2017-04-28 11:37:33 +00:00

Support empty output messages to DNS logger

2017-08-06 22:02:55 +00:00

Replaced system with IO.popen to prevent an unlikely RCE, and also added additional checks.

2015-07-19 11:24:53 +02:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Update hook jQuery to 1.12.4 - Fix #1133

2017-04-15 10:50:26 +00:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Show errors from msfrpc-client

2017-06-18 03:13:23 +00:00

Store NetworkHost :lastseen as integer - Fix #1348

2017-02-03 19:53:44 +00:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Cleanup and fix proxy/requester

2017-04-16 14:28:45 +00:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Fix requester when evasion is enabled - Fix #1386

2017-08-06 22:16:40 +00:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

social_engineering

Updated Copyright information

2016-12-29 15:50:13 +10:00

Updated Copyright information

2016-12-29 15:50:13 +10:00

Fix XSSRays when evasion is enabled - Fix #1426

2017-08-06 23:28:13 +00:00