GHSA-hqv9-6jqw-9g8m

Опубликовано: 12 июл. 2023

Источник: github

Github: Прошло ревью

CVSS3: 6.1

Описание

Pimcore admin UI vulnerable to Cross-site Scripting in 2 factor authentication setup page

Summary

Unauthenticated HTML Injection / XSS Possible. Conditions: 2factor authentication must not set before

Vulnerable Endpoint: /admin/login/2fa-setup

Vulnerable Param: error= How it works, So basically any admin, who has not setup 2 factor authentication before is vulnerable for this attack, without need for any form of privilege, causing the application to execute arbitrary scripts / HTML Contents.

Another potential attack vector, as it's a 2fa page and it has QR Code, attacker can replace this QR Code with something he has, leading to increase threat to the admin.

This attack can be used to execute arbitrary scripts or HTML Injection, causing the target application to execute these resulting in cookie steeling, defacement or Injecting phishing URLs on the target application.

Ссылки

Пакеты

Наименование

pimcore/admin-ui-classic-bundle

composer

Затронутые версииВерсия исправления

< 1.0.3

1.0.3

EPSS

Процентиль: 2%

0.00014

Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2023-37280

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-37280

CVSS3: 5

nvd

больше 2 лет назад

Pimcore Admin Classic Bundle provides a Backend UI for Pimcore based on the ExtJS framework. An admin who has not setup two factor authentication before is vulnerable for this attack, without need for any form of privilege, causing the application to execute arbitrary scripts/HTML content. This vulnerability has been patched in version 1.0.3.

EPSS

Процентиль: 2%

0.00014

Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2023-37280

Дефекты

CWE-79

GHSA-hqv9-6jqw-9g8m

Описание

Summary

Patches

Workarounds

References

Ссылки

Пакеты

CVE ID

Дефекты

Связанные уязвимости

CVE ID

Дефекты