AnQiCMS Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in the content management feature of AnQiCMS version 3.4.11. This vulnerability allows remote attackers to execute arbitrary JavaScript by injecting malicious scripts into the title, categoryTitle, and tmpTag parameters. The injected scripts are executed when the affected content is viewed, potentially leading to session hijacking or compromising admin accounts.

Impact

Exploitation of this vulnerability allows for the injection of malicious scripts that are executed in the context of the user's browser. This could lead to session hijacking or, for admin users, a compromise of their accounts.

Reproduction

To reproduce this vulnerability, log into an affected AnQiCMS instance and post an article with the title containing a script tag, such as a JavaScript alert. After publishing, the injected script will execute when the article is viewed, demonstrating the stored cross-site scripting vulnerability.

Remediation

It is recommended that administrators validate and sanitize user inputs in the affected fields to prevent script injection. Access to the vulnerable content management features should be disabled or restricted until a patch is available.