CVE-2020-5298

Published: Jun 3, 2020

Modified: Aug 4, 2024

PUBLISHED

CVSS v3.1

4.0

MEDIUM

Description

In OctoberCMS (october/october composer package) versions from 1.0.319 and before 1.0.466, a user with the ability to use the import functionality of the `ImportExportController` behavior can be socially engineered by an attacker to upload a maliciously crafted CSV file which could result in a reflected XSS attack on the user in question Issue has been patched in Build 466 (v1.0.466).

Vendor	Product	Versions
octobercms	october	affected `>= 1.0.319, < 1.0.466`

Weaknesses (CWE)

CWE-87

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

High

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

References

https://github.com/octobercms/october/security/advisories/GHSA-gg6x-xx78-448c

x_refsource_CONFIRM

https://github.com/octobercms/october/commit/cd0b6a791f995d86071a024464c1702efc50f46c

x_refsource_MISC

http://packetstormsecurity.com/files/158730/October-CMS-Build-465-XSS-File-Read-File-Deletion-CSV-Injection.html

x_refsource_MISC

20200804 October CMS <= Build 465 Multiple Vulnerabilities - Arbitrary File Read

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-5298

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References