YouDianCMS存在XSS攻击

无标签
PHP代码审计
发布日期:   2021-09-13
更新日期:   2021-12-01
文章字数:   121
阅读时长:   1 分
阅读次数:  

YouDianCMS XSS vulnerability

YouDianCMS XSS vulnerability
First download youdiancms 9.4.0 to build a local test environment
http://www.youdiancms.com/soft.html

image-20210913141849974

image-20210913142050524

Successfully set up a local test environment

Need to log in to the administrator background first

The vulnerability is located at index.php/Admin/Config/basic website name

Failure to legally check the website name causes XSS vulnerabilities

Insert the XSS code in the site name, and then save

image-20210913142559719

Then visit the front page of the website, the XSS code is executed!

image-20210913142700062

Look at the code

The vulnerability code location is in the _save method of App/Lib/Model/Admin/ConfigModel.class.php

image-20210913142837840

There is no security check on the information that needs to be saved, and no filtering

文章作者: yq1ng
文章链接: http://yq1ng.github.io/2021/09/13/youdiancms-cun-zai-xss-gong-ji/
版权声明: 本博客所有文章除特別声明外,均采用 CC BY 4.0 许可协议。转载请注明来源 yq1ng !
无标签
评论
 上一篇
BUUOJ NPUCTF2020 web BUUOJ NPUCTF2020 web
随便记录一下,可能不够详细,但是会把参考链接放上去(参考的比较详细的文章) [TOC]
2021-09-18 CTF刷题
... Java
下一篇 
[PHP代码审计]-Tp6漏洞--反序列化 [PHP代码审计]-Tp6漏洞--反序列化
这里记录了我复现分析的时候遇到的困难、奇葩问题,不够详细请谅解 关于 TP6 的反序列化 POC,除 v6.0.0-rc3 以前的版本可用,其他的已全部失效!官方 github 未找到 commit 记录 但是链子还是值得一看的,虽然旧链新
2021-08-20 PHP安全
  目录