Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bug: V7.0 Cross Site Scripting Vulnerability #1

Open
zhouxingixng opened this issue Jan 8, 2019 · 0 comments

Comments

@zhouxingixng
Copy link

commented Jan 8, 2019

There is an xss vulnerability in your latest version of the CmsEasy_7.0

In the CmsEasy_7.0/ckplayer.php:
Get url here
image
Unfiltered direct output
image

2.Steps To Reproduce:
open“http://127.0.0.1/ckplayer.php?url=http%3A//img.ksbbs.com/asset/Mon_1703/05cacb4e02f9d9e.mp4%3C/sCripT%3E%3CsCripT%3Ealert(1)%3C/sCripT%3E%3CsCripT%3E&autoplay=false”
image
image

Fix:

  1. Strictly verify user input, you must perform strict checks and html escape escaping on all input scripts, iframes, etc. The input here is not only the input interface that the user can directly interact with, but also the variables in the HTTP request in the HTTP request, the variables in the HTTP request header, and so on.
  2. Verify the data type and verify its format, length, scope, and content.
  3. Not only need to be verified on the client side but also on the server side.
  4. The output data should also be checked. The values in the database may be output in multiple places on a large website. Even if the input is coded, the security check should be performed at the output points.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
1 participant
You can’t perform that action at this time.