search

NavigateCMS / Navigate-CMS

Navigate CMS, a very powerful open source content management system for everybody.
http://www.navigatecms.com
GNU General Public License v2.0
8 stars 4 forks source link

Cross Site Script Vulnerability NavigateCMS 2.9 #19

Closed tranvannam186 closed 4 years ago

tranvannam186 commented 4 years ago

Expected behaviour An authenticated malicious user can take advantage of a Reflected XSS vulnerability in the name="Aliases" feature. Impact Commonly include transmitting private data, like cookies or other session information, to the attacker, redirecting the victim to web content controlled by the attacker, or performing other malicious operations on the user’s machine under the guise of the vulnerable site. Steps to reproduce

  1. Log into the Admin.
  2. Go to function "Web > Web sites"
  3. Go to "create > Aliases > add"
  4. add "// # "><svg/onload=prompt(/NamTV/)>" in textbox Alias and Real URL.
  5. Click "save".

--------------result-------------- image

NavigateCMS commented 4 years ago

Fixed by b1a17aebbbf567448d8aae56526dbc33a8b3fa7d