Deserialization of Untrusted Data in emlog pro v.2.1.15 and earlier allows a remote attacker to execute arbitrary code via the cache.php component.

CVE-2023-43291: CVE-2023-43291.md

A vulnerability classified as critical has been found in ForU CMS. This affects an unknown part of the file /install/index.php. The manipulation of the argument db_name leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The associated identifier of this vulnerability is VDB-240363. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2023-5221

The Modal Window plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 5.3.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Last change on this file was 2915607, checked in by , 4 months ago

Update to version 5.3.5  

**File size:** 1.7 KB

Line

 

1

<?php

2

/\*\*

3

 \* Shortcode

4

 \*

5

 \* @package     Wow\_Plugin

6

 \* @copyright   Copyright (c) 2018, Dmytro Lobov

7

 \* @license     http://opensource.org/licenses/gpl-2.0.php GNU Public License

8

 \* @since       1.0

9

 \*/

10

11

12

if ( ! defined( 'ABSPATH' ) ) {

13

        exit;

14

}

15

16

extract( shortcode\_atts( array( 'id' \=> "" ), $atts ) );

17

global $wpdb;

18

$table  \= $wpdb\->prefix . 'wow\_' . $this\->plugin\['prefix'\];

19

$sSQL   \= $wpdb\->prepare( "select \* from $table WHERE id = %d", $id );

20

$result \= $wpdb\->get\_results( $sSQL );

21

22

if ( count( $result ) \> 0 ) {

23

24

        foreach ( $result as $key \=> $val ) {

25

                $param \= unserialize( $val\->param );

26

                $check \= $this\->check( $param, $id );

27

                if ( $check \=== false ) {

28

                        return false;

29

                }

30

31

                if ( empty( $val\->status ) ) {

32

                        return false;

33

                }

34

35

                include( 'partials/public.php' );

36

37

                $slug       \= $this\->plugin\['slug'\];

38

                $version    \= $this\->plugin\['version'\];

39

                $url\_asset  \= plugin\_dir\_url( \_\_FILE\_\_ );

40

                $pre\_suffix \= defined( 'SCRIPT\_DEBUG' ) && SCRIPT\_DEBUG ? '' : '.min';

41

42

                $url\_style \= $url\_asset . 'assets/css/style' . $pre\_suffix . '.css';

43

                wp\_enqueue\_style( $slug, $url\_style, null, $version );

44

45

                wp\_add\_inline\_style( $slug, $val\->style );

46

47

                $effects\_url \= $url\_asset . 'assets/js/jquery.effects' . $pre\_suffix . '.js';

48

                wp\_enqueue\_script( $slug . '-effects', $effects\_url, array( 'jquery' ), $version );

49

50

                $modal\_url \= $url\_asset . 'assets/js/jquery.modalWindow' . $pre\_suffix . '.js';

51

                wp\_enqueue\_script( $slug, $modal\_url, array( 'jquery' ), $version );

52

53

                $inline\_js \= 'jQuery(function() {jQuery("#wow-modal-overlay-' . $id . '").ModalWindow(' . $val\->script . '); });';

54

                wp\_add\_inline\_script( $slug, $inline\_js );

55

56

57

        }

58

59

}

**Note:** See TracBrowser for help on using the repository browser.

CVE-2023-5161: shortcode.php in modal-window/tags/5.3.5/public – WordPress Plugin Repository

SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_notify.php.

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

CVE-2023-44169: vulnerabilities/SeaCMS V12.9 Arbitrary file write vulnerability.pdf at main · H3ppo/vulnerabilities

SeaCMS v12.8 has an arbitrary code writing vulnerability in the /jxz7g2/admin_ping.php file.

CVE-2023-43222

A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website footer parameter.

Skip to content

Sign up

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    
    Explore
    
    *   All features
    *   Documentation
    *   GitHub Skills
    *   Blog
    
*   For
    
    *   Enterprise
    *   Teams
    *   Startups
    *   Education
    
    By Solution
    
    *   CI/CD & Automation
    *   DevOps
    *   DevSecOps
    
    Resources
    
    *   Learning Pathways
    *   White papers, Ebooks, Webinars
    *   Customer Stories
    *   Partners
    
*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
    Repositories
    
    *   Topics
    *   Trending
    *   Collections
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

**Saved searches****Use saved searches to filter your results more quickly**

Sign in

Sign up

Gi0rgi0R / **xss\_installation\_blackcat\_cms\_1.4.1** Public

*   Notifications
*   Fork 0
*   Star 0
    

XSS in install page in BlackCat CMS 1.4.1

0 stars 0 forks Activity

Star

Notifications

*   Code
*   Issues
*   Pull requests
*   Actions
*   Projects
*   Security
*   Insights

More

main

Switch branches/tags

**Name already in use**

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

**1** branch **0** tags

Code

*   Clone
    
    Use Git or checkout with SVN using the web URL.
    
*   Open with GitHub Desktop
*   Download ZIP

**Latest commit**

**Git stats**

*   **6** commits

**Files**

Permalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

README.md

Update README.md

September 22, 2023 19:17

XSS in BlackCat CMS install page POC

**README.md**

**XSS in BlackCat CMS install page**

Software link: BlackCat CMS \[https://blackcat-cms.org/\]

Version: 1.4.1

@author: Jorge Riopedre

Description: BlackCat CMS 1.4.1 is affected by a Cross-site scripting (XSS) vulnerability in upload/install/index.php that allows remote attackers to inject arbitrary web script or HTML via the 'Website Title' parameter.

**POC**

When performing the installation and entering the site settings to install the appliance, the 'Website title' field is affected by the injection of arbitrary code:

**About**

XSS in install page in BlackCat CMS 1.4.1

**Resources**

Readme

Activity

**Stars**

**0** stars

**Watchers**

**1** watching

**Forks**

**0** forks

Report repository

**Releases**

No releases published

**Packages**

No packages published

CVE-2023-44043: GitHub - Gi0rgi0R/xss_installation_blackcat_cms_1.4.1: XSS in install page in BlackCat CMS 1.4.1

Super Store Finder v3.6 and below was discovered to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.

CVE-2023-44044: Superstore-sql-poc/SQL at main · TishaManandhar/Superstore-sql-poc

A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter.

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

CVE-2023-44042: GitHub - Gi0rgi0R/xss_frontend_settings_blackcat_cms_1.4.1: XSS in frontend settings in BlackCat CMS 1.4.1

A remote code execution (RCE) vulnerability in the xmlrpc.php endpoint of NodeBB Inc NodeBB forum software prior to v1.18.6 allows attackers to execute arbitrary code via crafted XML-RPC requests.

CVE-2023-43187: CVE/CVE-2023-43187 at main · jagat-singh-chaudhary/CVE

DedeBIZ v6.2.11 was discovered to contain multiple remote code execution (RCE) vulnerabilities at /admin/file_manage_control.php via the $activepath and $filename parameters.

*   首页
*   下载
*   文档
*   商业支持
*   贡献者
*   服务
*   代码托管
*   联系我们

**免费商用，快速搭建企业、博客、商城开源站点**

DedeBIZ系统基于PHP7版本开发，具有很强的可扩展性，并且采用GPLv2协议完全开放源代码。DedeBIZ支持采用现流行的Go语言设计开发，拥有简单易用、灵活扩展特性之外更安全、高效。模板设计制作简单，一直是系统一大特点，延续之前标签，同时采用响应式模板引擎Bootstrap作为系统模板渲染引擎，让搭建跨终端和移动端全媒体站点更简单。

推荐环境：Nginx+PHP8.X+MySQL5.X 最新版本：6.2.12（2023-09-28） 下载程序

**下载程序**

我们需要先准备程序需要的运行环境，然后通过下载软件安装包或者通过源代码检出的方式来实现搭建系统。

前往下载

**技术服务**

DedeBIZ作为全新品牌，长达十年的技术沉淀作为您的技术补充，将为您带来安全、专业、可信赖的服务体验，值得拥有！

了解更多

**商业服务**

感谢对DedeBIZ系统的支持，您的购买是对知识产权的支持与尊重，更是为中国建站系统走向世界贡献力量。

授权申请

**贡献者**

注册加入DedeBIZ贡献者，个人和组织能够共同参与官方全新开源生态建设，互利共赢。

加入团队

**官方团队**

**天涯**

精通GO、PHP语言，十年技术沉淀。

**老岳**

资深高级UI设计师，十年设计经验沉淀。

**织梦猫**

专门提供DedeBIZ模板下载的网站。

**织梦帮**

专门提供DedeBIZ模板下载的网站。

**动态资讯**

**V6.2.7登场：数据共享无忧，构建互联万物新生态**

 天涯 2023年5月18日

大家期盼已久的V6.2.7发布了，这次更新的重点是新增了跨站数据调用功能，让数据共享更加简单。我们还对用户中心功能进行了优化，使现有系统成为集内容、互动和支付于一体的综合性系统。

**缅怀DedeCMS创始人林学先生**

 天涯 2022年12月4日

2022年12月3日下午DedeCMS创始人林学先生（IT柏拉图）因罹患癌症逝世。林学先生生于1979年10月10日，于2004年8月编写的DedeCMS至今仍有数十万企业、个人站长使用

Tag

#php