Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Possible Cross site scripting (XSS) #850

Closed
Rishivarkumar opened this issue Dec 18, 2019 · 1 comment · Fixed by #858
Closed

Possible Cross site scripting (XSS) #850

Rishivarkumar opened this issue Dec 18, 2019 · 1 comment · Fixed by #858
Assignees
Milestone

Comments

@Rishivarkumar
Copy link

Rishivarkumar commented Dec 18, 2019

SCOPE:
Package: Subrion CMS
Version: 4.2.1
ISSUE: XSS

Vulnerability Description: The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. As a result, an attacker can inject and execute arbitrary HTML and script code in user's browser in context of a vulnerable website.

Vulnerability Classification:
CWE: 79
CVSS3Basescore: 6.1
CVSS: 3.5 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:H

Steps To Reproduce:

  • Login
  • Click on contents->Pages->Add page

Capture01

  • Fill the details

Capture2

In title give the payload

Capture3

  • Now click on blocks while adding a new block XSS is being triggered.

Capture4

Reference: https://cwe.mitre.org/data/definitions/79.html
Mitigations:

  • Perform sanitization of input data before inserting it into the page content.
  • Escaping user input.
  • Validating user input.
4unkur added a commit that referenced this issue Feb 26, 2020
@4unkur 4unkur self-assigned this Feb 26, 2020
@4unkur
Copy link
Member

4unkur commented Feb 26, 2020

@Rishivarkumar
Thank you for your report. The patch will be released soon

4unkur added a commit that referenced this issue Feb 27, 2020
@4unkur 4unkur linked a pull request Feb 27, 2020 that will close this issue
vbezruchkin pushed a commit that referenced this issue Feb 28, 2020
@4unkur 4unkur added this to the 4.2.2 milestone Feb 28, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants