PT-2018-13722 · Easycms · Easycms

Sqlsec

Published

2018-09-09

Updated

2018-11-07

CVE-2018-16759

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions EasyCMS version 1.4

Description The issue concerns the removeXSS function in EasyCMS, which is vulnerable to XSS attacks via an onhashchange event. This is due to the function's inadequate handling of certain events, allowing malicious scripts to be executed.

Recommendations For EasyCMS version 1.4, consider modifying the removeXSS function in App/Common/common.php to properly handle onhashchange events and prevent XSS attacks. As a temporary workaround, consider disabling the removeXSS function until a patch is available. Restrict access to the SearchAction.class.php module to minimize the risk of exploitation.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2018-16759

Affected Products

Easycms

PT-2018-13722 · Easycms · Easycms

CVE-2018-16759

Weakness Enumeration

Related Identifiers

Affected Products

References · 3