October CMS User Plugin 1.4.5 – Persistent Cross-Site Scripting

Exploit Database
15 阅读

作者： 0xB9

日期： 2018-04-26
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/44546/

# Exploit Title: October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting
# Date: 2018-04-03
# Author: 0xB9
# Software Link: https://octobercms.com/plugin/rainlab-user
# Version: 1.4.5
# Tested on: Ubuntu 17.10
# CVE: CVE-2018-10366

#1. Description:
Front-end user management for October CMS. Allows visitors to create a website.

#2. Proof of Concept:

Persistent XSS
- Go to the account page localhost/OctoberCMS/account/
- Register & enter the following for your full name <p """><SCRIPT>alert("XSS")</SCRIPT>">
- You will be alerted everytime you visit the account page localhost/OctoberCMS/account/

#3. Solution:
Update to 1.4.6

last Exploits
October CMS User Plugin 1.4.5 – Persistent Cross-Site Scripting的更多信息

ConverTo Video Downloader & Converter 1.4.1 – Arbitrary File Download：
Clipbucket 2.5 – Cross-Site Request Forgery：
Joomla! Component Appointment 1.5 – Local File Inclusion：
SocialEngine 4.2.2 – Multiple Vulnerabilities：
C4G Basic Laboratory Information System (BLIS) 3.4 – SQL Injection：
Joomla! Component com_yanc – SQL Injection：
WampServer 3.0.6 – Cross-Site Request Forgery：
Get Tube – SQL Injection：