| Title | DedeCMS V5.7.116 Cross Site Scripting |
|---|
| Description | Summary
A stored XSS vulnerability has been identified in DedeCMS V5.7.116.
Attackers can exploit this vulnerability by maliciously inserting an XSS payload in the comment section during the purchase of goods.
Details
The vulnerability is located in the file plus/carbuyaction.php. Our analysis indicates that all parameters are passed through the RemoveXSS method.
However, our payload can bypass the RemoveXSS method's filtering for XSS vulnerabilities, thus any script that relies solely on the RemoveXSS method to filter parameter values and displays these values on the page is vulnerable.
Steps
The attacker, posing as a regular user, purchases goods and adds a malicious comment.
An administrator opens the order details in the backend, triggering the stored XSS vulnerability. |
|---|
| Source | ⚠️ https://github.com/Hebing123/cve/issues/79 |
|---|
| User | jiashenghe (UID 39445) |
|---|
| Submission | 11/28/2024 04:04 (2 years ago) |
|---|
| Moderation | 12/04/2024 17:31 (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 286905 [DedeCMS 5.7.116 HTTP POST Request /plus/carbuyaction.php RemoveXSS cross site scripting] |
|---|
| Points | 20 |
|---|