CVE-2024-4023

Exploit

EPSS 0.75%
Veröffentlicht 20.03.2025 10:09:54
Zuletzt bearbeitet 23.06.2025 20:46:33
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

Stored XSS in flatpressblog/flatpress

A stored cross-site scripting (XSS) vulnerability exists in flatpressblog/flatpress version 1.3. When a user uploads a file with a `.xsig` extension and directly accesses this file, the server responds with a Content-type of application/octet-stream, leading to the file being processed as an HTML file. This allows an attacker to execute arbitrary JavaScript code, which can be used to steal user cookies, perform HTTP requests, and access content of the same origin.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Flatpress ≫ Flatpress Version1.3

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.75%	0.5

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	8.1	2.8	5.2	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

https://huntr.com/bounties/ed803c13-0858-4c22-93ba-bf2384ab1e9d

Third Party Advisory

Exploit

https://github.com/flatpressblog/flatpress/commit/3c9cc69364a45fd3f92d4bd606344b5dd1205d6a

Patch

https://nvd.nist.gov/vuln/detail/CVE-2024-4023

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-4023

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-4023

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-4023