SQL injection vulnerability in the ad***.php page of YXcmsApp 1.4.7 (CNVD-2019-05336)

YXcmsApp is a PHP and MySQL based enterprise building content management system CMS. A SQL injection vulnerability exists in the ad.php page of YXcmsApp 1.4.7, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in YXcmsApp1.4.7's ad***.php Page

YXcmsApp is a PHP and MySQL based enterprise building content management system CMS. A SQL injection vulnerability exists in the ad.php page of YXcmsApp 1.4.7, which can be exploited by attackers to obtain sensitive information from the database...

Stored Cross-site Scripting Vulnerability at YXcmsApp Message Boards

Yxcms is an enterprise building system based on PHP and mysql technology. A stored cross-site scripting vulnerability exists at the YXcmsApp message board. The vulnerability allows an attacker to construct cross-site statements, perform pop-up box operations, and also obtain sensitive information...

YXcmsApp V1.4.3 SQL Injection Vulnerability at Administrator Uninstalled Applications

Yxcms is an enterprise building system based on PHP and mysql technology. A SQL injection vulnerability exists in YXcmsApp V1.4.3 at the administrator uninstall application. The lack of filtering of the 'app' parameter allows an attacker to exploit the vulnerability to obtain sensitive informatio...

YXcmsApp V1.4.3 SQL Injection Vulnerability in Background Deletion of Guestbooks

Yxcms is an enterprise building system based on PHP and mysql technology. A SQL injection vulnerability exists in YXcmsApp V1.4.3 at the background deletion of guestbooks. The lack of filtering of the 'delid' parameter allows attackers to exploit the vulnerability to obtain sensitive database...

Reflected Cross-Site Scripting Vulnerability in YXcmsApp V1.4.3 'logout' Function

Yxcms is an enterprise building system based on PHP and mysql technology. A reflective cross-site scripting vulnerability exists in the YXcmsApp V1.4.3 'logout' function. It allows an attacker to construct an XSS statement to perform a pop-up box operation and obtain information such as user...

YXcmsApp v1.2.7 暴力sql注入。

简要描述： rt 详细说明： YXcmsApp 的cookie的加密用的都是dz的那个函数， 看看密钥是怎么来的 protected/apps/install/controller/indexController.php $this-randomcode= substrmd5time, 0, 6; 唔。才6位，那么就很好破解了，poc见测试代码 注册用户，抓包获取cookie yxaut的值， 利用poc得到key后，我们就能根据他的加密函数控制cookie了。 function cpencode$data,$key='',$expire = 0...

YXcmsApp某处xss导致getshell

简要描述： xss到后台导致getshell一条龙服务不过略鸡肋。 详细说明： YXCMS是一款面向企业的内容管理系统，采用三级缓存，MVC架构以BSD协议开源。 注册了用户以后来到用户管理页面，点击信息发布 - 增加咨询，发现是一个富文本编辑器，kindeditor。不管是什么编辑器，既然给了一个用户这么大的权限，这种情况下很容易出现xss。 随便输入点什么东西，抓包，修改content字段内容，写你的xss代码，什么都行。 好了。管理员在后台就能看到我提交的文章： 然后编辑的话就能触发xss：...