Skip to content

Latest commit

 

History

History
37 lines (19 loc) · 1.28 KB

maccms_xss.md

File metadata and controls

37 lines (19 loc) · 1.28 KB

maccms Background member information exists xss

version:v10

Software download address:http://www.maccms.com

Login to the background to enter the user-> member module -> editing function

image

Write payload to the nickname in the edit window (“><img src=x onerror=alert(1)>)

image

Click save. Save successfully

image

The XSS attack is triggered when the administrator edits the user again

image

An XSS attack is also triggered when the user logs in

image

in /application/admin/controller/User.php

image

XSS occurs when the data is not filtered while accepting the post data at the time of the saved information

in /application/admin/view/user/info.html

image

Data is also not filtered when user nicknames are returned