CVE-2020-5298

Опубликовано: 03 июн. 2020

Источник: nvd

CVSS3: 4

CVSS3: 4.8

CVSS2: 3.5

EPSS Низкий

Описание

In OctoberCMS (october/october composer package) versions from 1.0.319 and before 1.0.466, a user with the ability to use the import functionality of the ImportExportController behavior can be socially engineered by an attacker to upload a maliciously crafted CSV file which could result in a reflected XSS attack on the user in question Issue has been patched in Build 466 (v1.0.466).

Ссылки

http://packetstormsecurity.com/files/158730/October-CMS-Build-465-XSS-File-Read-File-Deletion-CSV-Injection.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2020/Aug/2
Exploit
Mailing List
Third Party Advisory
https://github.com/octobercms/october/commit/cd0b6a791f995d86071a024464c1702efc50f46c
Patch
Third Party Advisory
https://github.com/octobercms/october/security/advisories/GHSA-gg6x-xx78-448c
Patch
Third Party Advisory
http://packetstormsecurity.com/files/158730/October-CMS-Build-465-XSS-File-Read-File-Deletion-CSV-Injection.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2020/Aug/2
Exploit
Mailing List
Third Party Advisory
https://github.com/octobercms/october/commit/cd0b6a791f995d86071a024464c1702efc50f46c
Patch
Third Party Advisory
https://github.com/octobercms/october/security/advisories/GHSA-gg6x-xx78-448c
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:octobercms:october:*:*:*:*:*:*:*:*

Версия от 1.0.319 (включая) до 1.0.466 (исключая)

EPSS

Процентиль: 73%

0.00759

Низкий

4 Medium

CVSS3

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-87

CWE-79

Связанные уязвимости

GHSA-gg6x-xx78-448c

CVSS3: 4

github

больше 5 лет назад

Reflected XSS when importing CSV in OctoberCMS

EPSS

Процентиль: 73%

0.00759

Низкий

4 Medium

CVSS3

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-87

CWE-79