.. / CVE-2018-18608

Exploit for DedeCMS 5.7 SP2 - Cross-Site Scripting (CVE-2018-18608)

Description:

DedeCMS 5.7 SP2 is vulnerable to cross-site scripting via the function named GetPageList defined in the include/datalistcp.class.php file that is used to display the page numbers list at the bottom of some templates, as demonstrated by the PATH_INFO to /member/index.php, /member/pm.php, /member/content_list.php, or /plus/feedback.php.

Nuclei Template

View the template here CVE-2018-18608.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2018/CVE-2018-18608.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2018-18608
https://github.com/ky-j/dedecms/issues/8
https://github.com/ARPSyndicate/kenzer-templates
https://github.com/ky-j/dedecms/files/2504649/Reflected.XSS.Vulnerability.exists.in.the.file.of.DedeCMS.V5.7.SP2.docx

.. / CVE-2018-18608 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for DedeCMS 5.7 SP2 - Cross-Site Scripting (CVE-2018-18608)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2018-18608