wetech-cms icon indicating copy to clipboard operation
wetech-cms copied to clipboard

Published 20 hours ago verified publisher icon cjbi

Metadata

wetech cms是本人整合开发的一套内容管理系统。旨在开发一个通用的、可持续开发集成的、方便扩展的cms系统,目前主要用来替代本人的wordpress博客

Results 4 wetech-cms issues
Sort by recently updated
recently updated
newest added

项目无法启动

2 comment

在wetech-core 目录下执行 mvn jetty:run 无法正常启动 ``` xxx:wetech-core master$ mvn jetty:run [INFO] Scanning for projects... [INFO] [INFO] ----------------------< tech.wetech:wetech-core >----------------------- [INFO] Building wetech-core 0.0.1-SNAPSHOT [INFO] --------------------------------[ jar ]--------------------------------- [INFO] [INFO] >>>...

thiscodecc avatar thiscodecc

请问按照对应的操作成功将项目运行起来了,但是访问http://localhost:8888/wetech-cms说404

1 comment

效果如下,请问是什么原因呢 ![66666666666666666666](https://user-images.githubusercontent.com/16473366/50373337-8ad97680-0618-11e9-9ff1-41e78ddac29c.png) ![7777777777777777](https://user-images.githubusercontent.com/16473366/50373348-c7a56d80-0618-11e9-94d0-98a90cf7a502.png) ![888888888888](https://user-images.githubusercontent.com/16473366/50373351-cd9b4e80-0618-11e9-87be-cec8faf2821a.png)

xifumengmengda avatar xifumengmengda

The new user role management module has a stored XSS vulnerability

Interface location entry:http://{IP}:8081/wetech_web/admin/role/add.do,payload:4 ==> %3Cp%2FonMouseoVer%3Dconfirm%607%60%3E4 ![image](https://github.com/cjbi/wetech-cms/assets/36062846/8b4774df-de03-44f1-a9ab-b44432ca45bf) [payload:](payload:4) ![image](https://github.com/cjbi/wetech-cms/assets/36062846/48b5c048-79ad-4d29-99dd-5a4c4d5a783d)

unafraid-fearless avatar unafraid-fearless

There is a CSRF vulnerability in adding an administrator user

1.Interface address location:http://{IP_address}/wetech_web/admin/user/add.do ![image](https://github.com/cjbi/wetech-cms/assets/36062846/75165a0a-6406-4dda-82b6-7839c68be4a4) ![image](https://github.com/cjbi/wetech-cms/assets/36062846/75165a0a-6406-4dda-82b6-7839c68be4a4) ![image](https://github.com/cjbi/wetech-cms/assets/36062846/75165a0a-6406-4dda-82b6-7839c68be4a4) 2.I deleted the Referer and Origin fields,Interface replay successful,Here Generate CSRF HTML using Burp,The username and password are designed to be root123 ![csrf1](https://github.com/cjbi/wetech-cms/assets/36062846/c6efc948-fb8a-4901-983f-45c7b39a01e2) ![csrf1](https://github.com/cjbi/wetech-cms/assets/36062846/c6efc948-fb8a-4901-983f-45c7b39a01e2)...

unafraid-fearless avatar unafraid-fearless

Metadata

72
Stars
40
Forks
Watchers

Owner

verified publisher icon cjbi

Metadata

wetech cms是本人整合开发的一套内容管理系统。旨在开发一个通用的、可持续开发集成的、方便扩展的cms系统,目前主要用来替代本人的wordpress博客

Back