YiFang CMS Cross-Site Scripting Vulnerability in Extended Management Module
Vulnerability
A cross-site scripting (XSS) vulnerability has been identified in YiFang CMS versions through 2.0.5. The issue resides in the Extended Management Module, specifically within the 'update' function of 'app/db/admin/D_adManage.php'. This vulnerability allows for stored XSS, as the 'name' parameter is saved directly to the database without proper sanitization. An attacker can exploit this by injecting a malicious script, which is executed when the ad list is accessed.
Impact
Exploitation of this vulnerability allows for cross-site scripting, where an injected script is executed in the context of the user.
Reproduction
To reproduce this vulnerability, log into the admin panel and navigate to the ad management section. Use the 'edit' function to modify an ad. In the 'name' parameter, insert a script payload, such as an SVG image with an 'onload' event. Once the ad is saved, the injected script will execute when the ad list is accessed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.