CVE-2022-36096

EPSS 59.47%
Veröffentlicht 08.09.2022 21:15:07
Zuletzt bearbeitet 21.11.2024 07:12:22
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

XWiki Platform vulnerable to Cross-site Scripting in the deleted attachments list

The XWiki Platform Index UI is an Index of all pages, attachments, orphans and deleted pages and attachments for XWiki Platform, a generic wiki platform. Prior to versions 13.10.6 and 14.3, it's possible to store JavaScript which will be executed by anyone viewing the deleted attachments index with an attachment containing javascript in its name. This issue has been patched in XWiki 13.10.6 and 14.3. As a workaround, modify fix the vulnerability by editing the wiki page `XWiki.DeletedAttachments` with the object editor, open the `JavaScriptExtension` object and apply on the content the changes that can be found on the fix commit.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 6

NVD 3 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Xwiki ≫ Xwiki Version >= 2.3 < 13.10.6

Xwiki ≫ Xwiki Version >= 14.0 < 14.3

Xwiki ≫ Xwiki Version2.2 Updatemilestone1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	59.47%	0.99

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9	2.3	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
security-advisories@github.com	8.9	2.3	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters such as "<", ">", and "&" that could be interpreted as web-scripting elements when they are sent to a downstream component that processes web pages.

https://github.com/xwiki/xwiki-platform/commit/6705b0cd0289d1c90ed354bd4ecc1508c4b25745

Patch

Third Party Advisory

https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-gjmq-x5x7-wc36

Third Party Advisory

https://jira.xwiki.org/browse/XWIKI-19613

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-36096

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-36096

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-36096

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2022-36096