CVE-2023-31285

Опубликовано: 27 апр. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

An XSS issue was discovered in Serenity Serene (and StartSharp) before 6.7.0. When users upload temporary files, some specific file endings are not allowed, but it is possible to upload .html or .htm files containing an XSS payload. The resulting link can be sent to an administrator user.

Ссылки

http://packetstormsecurity.com/files/172648/Serenity-StartSharp-Software-File-Upload-XSS-User-Enumeration-Reusable-Tokens.html
http://seclists.org/fulldisclosure/2023/May/14
https://github.com/serenity-is/Serenity/commit/11b9d267f840513d04b4f4d4876de7823a6e48d2
Patch
Vendor Advisory
http://packetstormsecurity.com/files/172648/Serenity-StartSharp-Software-File-Upload-XSS-User-Enumeration-Reusable-Tokens.html
http://seclists.org/fulldisclosure/2023/May/14
https://github.com/serenity-is/Serenity/commit/11b9d267f840513d04b4f4d4876de7823a6e48d2
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:serenity:serene:*:*:*:*:*:*:*:*

Версия до 6.7.0 (исключая)

cpe:2.3:a:serenity:startsharp:*:*:*:*:*:*:*:*

Версия до 6.7.0 (исключая)

EPSS

Процентиль: 75%

0.00892

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-93h6-wx7r-mgfp