Skip to content
This repository has been archived by the owner on Jan 10, 2019. It is now read-only.

Stored-XSS Vulnerability Found in System setting -> site setting #57

Closed
RoodyChan opened this issue Apr 26, 2018 · 1 comment
Closed

Comments

@RoodyChan
Copy link

Steps to Reproduce

1、Login the backstage
http://127.0.0.1/DiliCMS-develop-3.x/admin/index.php

2、Go to System setting->site setting
dilicms-xss0

3、add the following payload to the fourth textbox
1"<script>alert(123)</script>
dilicms-xss6

4、Save and see the announcement we just posted
dilicms-xss5

dilicms-xss7

And then Stored-XSS triggered ...

@chekun
Copy link
Owner

chekun commented Oct 11, 2018

Yes, Thank you. But DiliCMS is not a software for production literally.
this vulnerability can be easily fixed by setting global_xss_filtering to true in config file https://github.com/chekun/DiliCMS/blob/v2.4.0/application/config/config.php#L282

@chekun chekun closed this as completed Oct 14, 2018
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants