Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

反射型xss #8

Closed
QiAnXinCodeSafe opened this issue Dec 24, 2018 · 1 comment
Closed

反射型xss #8

QiAnXinCodeSafe opened this issue Dec 24, 2018 · 1 comment

Comments

@QiAnXinCodeSafe
Copy link

QiAnXinCodeSafe commented Dec 24, 2018

您好:
我是360代码卫士的工作人员,在我们的开源项目的代码审计中发现jeesns存在xss漏洞,详细信息如下:
在CkeditorUploadController.java文件的32行处获取了请求中的CKEditorFuncNum参数,最后在41行处输出在页面上导致了xss漏洞。
default
虽然项目中存在xss拦截器
default
但是由于只对script标签内的字符做了过滤,而此处的xss并不需要利用script标签,因为上下文中已经有了。CKEditorFuncNum=");prompt(1);

虽然是post请求的反射型xss,但是还是能结合csrf进行攻击

zchuanzhao pushed a commit that referenced this issue Dec 26, 2018
@zchuanzhao
Copy link
Owner

已处理,多谢

zchuanzhao pushed a commit that referenced this issue May 13, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants