| タイトル | DedeCMS V5.7.116 Cross Site Scripting |
|---|
| 説明 | Summary
A stored XSS vulnerability has been identified in DedeCMS V5.7.116.
Attackers can exploit this vulnerability by maliciously inserting an XSS payload in the comment section during the purchase of goods.
Details
The vulnerability is located in the file plus/carbuyaction.php. Our analysis indicates that all parameters are passed through the RemoveXSS method.
However, our payload can bypass the RemoveXSS method's filtering for XSS vulnerabilities, thus any script that relies solely on the RemoveXSS method to filter parameter values and displays these values on the page is vulnerable.
Steps
The attacker, posing as a regular user, purchases goods and adds a malicious comment.
An administrator opens the order details in the backend, triggering the stored XSS vulnerability. |
|---|
| ソース | ⚠️ https://github.com/Hebing123/cve/issues/79 |
|---|
| ユーザー | jiashenghe (UID 39445) |
|---|
| 送信 | 2024年11月28日 04:04 (2 年 ago) |
|---|
| モデレーション | 2024年12月04日 17:31 (7 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 286905 [DedeCMS 5.7.116 HTTP POST Request /plus/carbuyaction.php RemoveXSS クロスサイトスクリプティング] |
|---|
| ポイント | 20 |
|---|