CVE-2018-19836

2018-12-0319:00:00

mitre

www.cve.org

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%

JSON

In Metinfo 6.1.3, include/interface/applogin.php allows setting arbitrary HTTP headers (including the Cookie header), and common.inc.php allows registering variables from the $_COOKIE value. This issue can, for example, be exploited in conjunction with CVE-2018-19835 to bypass many XSS filters such as the Chrome XSS filter.

References

github.com/imagemlt/metinfo/tree/master/reflected_xss_bypass_chrome