| tiêu đề | yanyutao0402 ChanCMS V3.3.0 Unauthorized RCE |
|---|
| Mô tả | The search method in app/modules/cms/controller/collect.js,the getArticle method also has a potential remote code execution (RCE) vulnerability. It gets the parseData from the request body and then uses new Function() to execute it. Although the code tries to clean up parseData using safeExecuteUserFunction, this blacklisting method is usually unreliable. An attacker may find ways to bypass filtering and thus execute arbitrary JavaScript code. Since this is executed on the server side, it is an RCE vulnerability. |
|---|
| Nguồn | ⚠️ https://github.com/August829/Yu/blob/main/58ead8e7e08bfb0e6.md |
|---|
| Người dùng | Yu_Bao (UID 89348) |
|---|
| Đệ trình | 22/08/2025 12:17 (cách đây 10 các tháng) |
|---|
| Kiểm duyệt | 10/09/2025 12:24 (19 days later) |
|---|
| Trạng thái | Bản sao |
|---|
| Mục VulDB | 317857 [yanyutao0402 ChanCMS đến 3.1.2 collect.js getArticle targetUrl nâng cao đặc quyền] |
|---|
| điểm | 0 |
|---|