# 快排CMS 后台XSS漏洞

### 漏洞描述 <a href="#lou-dong-miao-shu" id="lou-dong-miao-shu"></a>

快排CMS 后台存在XSS漏洞，通过后台构造特殊语句可以造成访问网站的用户被XSS影响

### 漏洞影响 <a href="#lou-dong-ying-xiang" id="lou-dong-ying-xiang"></a>

&#x20;Note

快排 CMS <= 1.2

### 环境搭建 <a href="#huan-jing-da-jian" id="huan-jing-da-jian"></a>

<https://gitee.com/qingzhanwang/kpcms>

### 漏洞复现 <a href="#lou-dong-fu-xian" id="lou-dong-fu-xian"></a>

漏洞出现在登录后台的网站编辑的位置，由于没有对输出的字符进行过滤，导致XSS

![](https://4279400230-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MgxNkYa2vR6HNnHdkjg%2F-MhqCFAXKvJC3-jSCtiq%2F-MhqCiVEWQtbjs_J3Abk%2Fimage.png?alt=media\&token=a93397c4-3c0e-443c-b608-ccec1aa6faa8)

主页版权处嵌入XSS代码

![](https://4279400230-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MgxNkYa2vR6HNnHdkjg%2F-MhqCFAXKvJC3-jSCtiq%2F-MhqCnl45pHDmw-SkJWZ%2Fimage.png?alt=media\&token=bf7bc5b4-6f3a-4874-a163-9dca3c39d5fd)

![](https://4279400230-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MgxNkYa2vR6HNnHdkjg%2F-MhqCFAXKvJC3-jSCtiq%2F-MhqCsfXwcU92Ee0nJYy%2Fimage.png?alt=media\&token=9b4ae6f5-ab9b-4f3e-b487-c0ca0e0aee0b)