Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

XSS vulnerability exists in jfinal_cms V5.1.0 #53

Open
superleeh opened this issue Dec 29, 2022 · 1 comment
Open

XSS vulnerability exists in jfinal_cms V5.1.0 #53

superleeh opened this issue Dec 29, 2022 · 1 comment

Comments

@superleeh
Copy link

Summary

There is XSS vulnerability below!
The reason for the vulnerability is that there is no filter on user input. According to the guidelines of CMS, We can create a user, and we can control the user's account number, password and email and so on.....

Exploition

After, There are many ways to trigger the vulnerability! The one is that we can make a comment and wait other users to click the user created by ourselves. The another one can get admin's secrect util admin login.

OK! We will create a user at first.
image
Press the submit button, we get a alert below
image
we can create a normal user account via this way, and then we can update the information
image

image

After we update the user's information, wo would wait!
When the admin user login, we can get its secrect!
image

image
@ElevenKong
Copy link

ElevenKong commented Dec 29, 2022 via email

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ElevenKong @superleeh