DedeCMS V5.7.97 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component /dede/co_do.php via the dopost, rpok, aidparameters.
Abstract
Affected product: DedeCMS V5.7.97
Attack type: Remote
Affected component: /dede/co_do.php
payload: dopost=replace&rpok=1&aid='>\\
Detail
/dede/co_ do.php line 156, the $aid variable in the ShowMsg() function is controllable. The $aid variable is obtained from $_GET['aid'].
/include/common.func.php line 280, the $aid variable is a $gourl variable in the ShowMsg() function.
/include/common.func.php line 326 and line 321, $gourl variables are spliced into $msg variables and output without filtering.
