CVE-2023-43871 PoC — WBCE CMS 跨站脚本漏洞

Source

https://github.com/sromanhu/CVE-2023-43871-WBCE-Arbitrary-File-Upload--XSS---Media

Associated Vulnerability

Title:WBCE CMS 跨站脚本漏洞 (CVE-2023-43871)
Description:WBCE CMS是一套基于PHP和MySQL的开源内容管理系统（CMS）。 WBCE CMS v.1.6.1版本存在跨站脚本漏洞，该漏洞源于没有验证上传的文件。

Description

WBCE 1.6.1 is affected by File Upload - XSS vulnerability that allows attackers to upload a PDF file with a hidden XSS that when executed will launch the XSS pop-up

Readme

# WBCE File Upload XSS - WBCE v1.6.1

## Author: (Sergio)

**Description:** File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden XSS.

**Attack Vectors:** A vulnerability in Media file upload sanitation allows you to upload a PDF file with hidden XSS.

---

### POC:


When logging into the panel, we will go to the "Media" section off General Menu.

![XSS Pdf](https://github.com/sromanhu/WBCE-File-Upload--XSS---Media/assets/87250597/0f499101-c248-4e6c-923a-3a532320dd1a)


We upload the PDF file with the hidden XSS and we see that we can execute it and the Reflected XSS appears.


![XSS Pdf resultado](https://github.com/sromanhu/WBCE-File-Upload--XSS---Media/assets/87250597/a0b6405e-7431-4793-9168-7a0d9aea6b21)






</br>

### Additional Information:
[http://www.cmsmadesimple.org/](https://wbce-cms.org/)

https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html

File Snapshot


 [4.0K]  /data/pocs/7b7772670f32c33619c50e52c497b007da7c91d6
└── [ 938]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!