Описание
In Vendure versions 0.1.0-alpha.2 to 1.5.1 are affected by Stored XSS vulnerability, where an attacker having catalog permission can upload a SVG file that contains malicious JavaScript into the “Assets” tab. The uploaded file will affect administrators as well as regular users.
Ссылки
- PatchThird Party Advisory
- ExploitThird Party Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 0.1.2 (включая) до 1.5.1 (включая)
Одно из
cpe:2.3:a:vendure:vendure:*:*:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha10:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha11:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha12:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha13:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha14:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha15:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha16:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha18:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha5:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha6:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha7:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha8:*:*:*:*:*:*
cpe:2.3:a:vendure:vendure:0.1.0:alpha9:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00206
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
почти 4 года назад
In Vendure versions 0.1.0-alpha.2 to 1.5.1 are affected by Stored XSS vulnerability, where an attacker having catalog permission can upload a SVG file that contains malicious JavaScript into the “Assets” tab. The uploaded file will affect administrators as well as regular users.
EPSS
Процентиль: 43%
0.00206
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79