You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the /YUNUCMSv1.1.8/app/admin/controller/System.php
The judgment code of the basic settings page is:
Pass in such a packet here
See the sys.php file to see that the site_title parameter has been changed.
The value in sys.php was taken directly in basic.html, resulting in a storage XSS vulnerability.
2.Steps To Reproduce:
Fix:
Strictly verify user input, you must perform strict checks and html escape escaping on all input scripts, iframes, etc.
The text was updated successfully, but these errors were encountered:
There is an Stored Cross Site Scripting vulnerability in your latest version of the CMS v1.1.8
Download link: "http://img.yunucms.com/o_1cvnmdq4igqv3i713iq183fu7qa.zip?attname="
In the /YUNUCMSv1.1.8/app/admin/controller/System.php
![image](https://user-images.githubusercontent.com/17960284/50676319-b011b000-102e-11e9-9109-d174a1ad1a55.png)
![image](https://user-images.githubusercontent.com/17960284/50676475-83aa6380-102f-11e9-951e-713c2fb5a683.png)
![image](https://user-images.githubusercontent.com/17960284/50676331-c3bd1680-102e-11e9-938f-1760f12636e7.png)
![image](https://user-images.githubusercontent.com/17960284/50676341-cf104200-102e-11e9-8ab4-325f2414022c.png)
The judgment code of the basic settings page is:
Pass in such a packet here
See the sys.php file to see that the site_title parameter has been changed.
The value in sys.php was taken directly in basic.html, resulting in a storage XSS vulnerability.
2.Steps To Reproduce:
![image](https://user-images.githubusercontent.com/17960284/50676375-01ba3a80-102f-11e9-8924-801910df77df.png)
![image](https://user-images.githubusercontent.com/17960284/50676383-07b01b80-102f-11e9-87f2-6aa42f0d62f5.png)
![image](https://user-images.githubusercontent.com/17960284/50676400-172f6480-102f-11e9-9d2c-fc6ec9d627d5.png)
Fix:
Strictly verify user input, you must perform strict checks and html escape escaping on all input scripts, iframes, etc.
The text was updated successfully, but these errors were encountered: