-
Notifications
You must be signed in to change notification settings - Fork 522
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[ADD] DedeCMS_v5.7_carbuyaction_存储型XSS
- Loading branch information
Showing
10 changed files
with
54 additions
and
10 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| # DedeCMS_v5.7_shops_delivery_å˜å‚¨åž‹XSS | ||
|
|
||
| ## Affected Version | ||
|
|
||
| DedeCMS-V5.7-UTF8-SP2 ï¼? å‘布日期 2017-03-15 ï¼? | ||
|
|
||
| 下载地å€ï¼? 链接: https://pan.baidu.com/s/1bprjPx1 密ç : mwdq | ||
|
|
||
|
|
||
| ## PoC | ||
|
|
||
| 该æ¼æ´žæ¯”较鸡肋,需è¦ç™»å½? 管ç†å‘˜åŽå°é€šè¿‡ æ·»åŠ é…é€æ–¹å¼? 功能 æ‰èƒ½è§¦å‘ï¼? æ·»åŠ åŽåœ¨å‰åŽå°éƒ½ä¼šè§¦å? å˜å‚¨åž? XSSã€? | ||
|
|
||
| 之所以会触å‘æ˜¯å› ä¸ºåœ¨ç³»ç»Ÿå¯? 管ç†å‘˜è¾“入的 é…é€æ–¹å¼?-æè¿°å—段(des)在入库å‰åªè¿›è¡Œäº? addslashes 转义特殊å—符处ç†ï¼Œå…¶å®žè¿™æ²¡æ¯›ç—…ã€? | ||
|
|
||
| é‡è¦çš„是å–出数æ®åº“çš„æ•°æ®è¾“出到页é¢å‰æ²¡è¿›è¡? HTML 实体编ç 处ç†ç›´æŽ¥è¾“出导致最终的 XSSã€? | ||
|
|
||
| 测试� | ||
|
|
||
| 1. åŽå°æ·»åŠ é…é€æ–¹å¼? | ||
|
|
||
|  | ||
|
|
||
| 2. æ·»åŠ æˆåŠŸåŽç›´æŽ¥å±•ç¤ºé…é€æ–¹å¼åˆ—è¡¨ï¼Œè§¦å‘ XSS | ||
|
|
||
|  | ||
|
|
||
| æ¤å¤–,这ä¸? XSS 在å‰å°ç”¨æˆ·è´ä¹°ä¸œè¥¿é€‰æ‹©é…é€æ–¹å¼çš„时候也会触å‘ã€? | ||
|
|
||
| ## References | ||
|
|
||
| 1. https://www.seebug.org/vuldb/ssvid-92863 |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| http://www.heiyaoshi8.com/member/shops_products.php ����©�� |
Binary file added
BIN
+309 KB
DedeCMS/DedeCMS_v5.7_carbuyaction_存储型XSS/local/微信截图_20170723140641.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters