Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

XSS vulnerabilities in pro2.0.3 #229

Closed
ez4s1mple1943 opened this issue Mar 31, 2023 · 1 comment
Closed

XSS vulnerabilities in pro2.0.3 #229

ez4s1mple1943 opened this issue Mar 31, 2023 · 1 comment

Comments

@ez4s1mple1943
Copy link

Version(latest version)
emlog_pro_2.0.3

Actual behavior
XSS vulnerabilities

Steps to reproduce the behavior

1.There is a stored xss in the article writing. The article body(文章正文) and article summary(文章摘要) has the vulnerability.

在写文章功能点,文章正文以及文章摘要处存在存储型xss
image

image

Go to the home page, the xss payload in article summary will be triggered first.
访问emlog首页,会先触发文章摘要中的xss
image

And after click the article, the xss in article body will be triggered.
之后点击该文章,会触发文章正文的xss
image

  1. The vulnerability is in resources --> add resource classification, the classification name has the xss.
    在资源-->添加资源分类中,分类名称存在xss漏洞
    image

image

After add a new resource classification, upload a file at will, then the vulnerability will be triggered, and it works when reloading the /admin/media.php page
在新创建的资源分类下,上传任意图片,即可触发xss,并且重新加载/admin/media.php页面时也会触发xss
image

image

3.And there is also a xss in home page bottom information.

在首页底部信息处存在存储性xss

image

Save the settings, and go to home page.
保存设置后,访问主页,触发xss

image

@emlog
Copy link
Owner

emlog commented Mar 31, 2023

好的感谢反馈,资源分类这里确实应该处理下,其他部分支持html和js是特性,暂不处理。

emlog added a commit that referenced this issue Apr 2, 2023
@emlog emlog closed this as completed Apr 2, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants