5.4
CVE-2021-33570
- EPSS 3.56%
- Veröffentlicht 25.05.2021 22:15:10
- Zuletzt bearbeitet 21.11.2024 06:09:06
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginPostbird 0.8.4 allows stored XSS via the onerror attribute of an IMG element in any PostgreSQL database table. This can result in reading local files via vectors involving XMLHttpRequest and open of a file:/// URL, or discovering PostgreSQL passwords via vectors involving Window.localStorage and savedConnections.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Postbird Project ≫ Postbird Version0.8.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.56% | 0.878 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.4 | 2.3 | 2.7 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
|
| nvd@nist.gov | 3.5 | 6.8 | 2.9 |
AV:N/AC:M/Au:S/C:N/I:P/A:N
|
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
http://packetstormsecurity.com/files/162831/Postbird-0.8.4-Cross-Site-Scripting-Local-File-Inclusion.html
http://packetstormsecurity.com/files/162872/Postbird-0.8.4-XSS-LFI-Insecure-Data-Storage.html
https://github.com/Paxa/postbird/issues/132
https://github.com/Paxa/postbird/issues/133
https://github.com/Paxa/postbird/issues/134
https://github.com/Tridentsec-io/postbird
https://tridentsec.io/blogs/postbird-cve-2021-33570/
https://www.exploit-db.com/exploits/49910