CVE-2018-12094
Description
Cross-site scripting (XSS) vulnerability in news.php in Dimofinf CMS Version 3.0.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A reflected XSS vulnerability in Dimofinf CMS 3.0.0 allows remote attackers to inject arbitrary web script via the id parameter in news.php.
Vulnerability
A reflected cross-site scripting (XSS) vulnerability exists in Dimofinf CMS version 3.0.0. The flaw resides in the id parameter of the news.php script, which is accessed via a GET request. The application does not properly sanitize or validate user input before reflecting it in the response, enabling arbitrary HTML and script injection. [1]
Exploitation
An attacker can exploit this vulnerability remotely without authentication by crafting a malicious URL that contains the injected payload in the id parameter. For example, visiting a URL like http://target/news.php?id=604"</|><plaintext/onmouseover=prompt(/XSS/)> will cause the browser to execute the attacker's script when the page loads. No user interaction beyond clicking the link is required. [1]
Impact
Successful exploitation allows the attacker to execute arbitrary JavaScript in the context of the victim's session within the affected CMS. This can lead to session hijacking, defacement, or theft of sensitive information displayed on the page. The attack is reflected (non-persistent), so the malicious payload is not stored on the server. [1]
Mitigation
The vendor has not released a patched version as of the publication date (2018-06-11). The reference recommends implementing proper output encoding and input validation for all user-supplied data, particularly the id parameter. Users should consider applying a WAF rule to block XSS payloads or upgrading to a later version of the CMS if available. [1]
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: = 3.0.0
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"Missing input sanitization on the id parameter in news.php allows reflected XSS."
Attack vector
An attacker crafts a malicious URL containing JavaScript payload in the id parameter of news.php and tricks a victim into clicking it. The server reflects the unsanitized input directly into the HTML response, causing the browser to execute the injected script [ref_id=1]. The attack is remote, requires no authentication, and is triggered via a GET request [ref_id=1].
Affected code
The vulnerable function is news.php, and the unsanitized parameter is id [ref_id=1]. The advisory does not specify the exact line or code path within news.php, but the id parameter is reflected in the response without escaping.
What the fix does
No official patch has been published for Dimofinf CMS 3.0.0. The advisory recommends general XSS prevention measures such as validating and escaping all untrusted input before inserting it into HTML, using HTML sanitization libraries, and deploying a Web Application Firewall [ref_id=1]. Without a vendor-supplied fix, the application remains vulnerable.
Preconditions
- networkAttacker must be able to deliver a crafted URL to the victim (e.g., via email, link, or social engineering).
- inputThe victim must click the crafted URL while authenticated or unauthenticated to the Dimofinf CMS application.
Reproduction
1. Access the Dimofinf CMS 3.0.0 application. 2. Visit the following URL, replacing the domain as needed: http://target/news.php?id=604""</|\><plaintext/onmouseover=prompt(/XSS/)> 3. Observe that the injected payload is reflected in the page and, when the mouse hovers over the injected element, the JavaScript prompt executes [ref_id=1].
Generated on May 25, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
2- www.exploit-db.com/exploits/44897/mitreexploitx_refsource_EXPLOIT-DB
- cxsecurity.com/issue/WLB-2018060091mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.