CVE-2020-7749

Опубликовано: 20 окт. 2020

Источник: nvd

CVSS3: 7.6

CVSS2: 6.5

EPSS Низкий

Описание

This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to inject arbitrary HTML/JS code and depending on the context. It will be outputted as an HTML on the page which gives opportunity for XSS or rendered on the server (puppeteer) which also gives opportunity for SSRF and Local File Read.

Ссылки

https://github.com/jperelli/osm-static-maps/blob/master/src/template.html%23L142
Broken Link
https://github.com/jperelli/osm-static-maps/pull/24
Patch
Third Party Advisory
https://snyk.io/vuln/SNYK-JS-OSMSTATICMAPS-609637
Exploit
Third Party Advisory
https://github.com/jperelli/osm-static-maps/blob/master/src/template.html%23L142
Broken Link
https://github.com/jperelli/osm-static-maps/pull/24
Patch
Third Party Advisory
https://snyk.io/vuln/SNYK-JS-OSMSTATICMAPS-609637
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:osm-static-maps_project:osm-static-maps:*:*:*:*:*:node.js:*:*

EPSS

Процентиль: 64%

0.00477

Низкий

7.6 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-74

Связанные уязвимости

GHSA-pxcf-v868-m492