October CMS User Plugin 1.4.5 - Persistent Cross-Site Scripting

🗓️ 26 Apr 2018 00:00:00Reported by 0xB9Type

October CMS User Plugin v1.4.5 - Persistent XS

Reporter	Title	Published	Views	Family All 12
0day.today	October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting Vulnerability	26 Apr 201800:00	–	zdt
CNVD	October CMS Users Plugin Cross-Site Scripting Vulnerability	27 Apr 201800:00	–	cnvd
CVE	CVE-2018-10366	25 Apr 201809:00	–	cve
Cvelist	CVE-2018-10366	25 Apr 201809:00	–	cvelist
EUVD	EUVD-2022-5718	3 Oct 202520:07	–	euvd
exploitpack	October CMS User Plugin 1.4.5 - Persistent Cross-Site Scripting	26 Apr 201800:00	–	exploitpack
Github Security Blog	User Plugin for October CSS Allows XSS	14 May 202203:21	–	github
NVD	CVE-2018-10366	25 Apr 201809:29	–	nvd
OSV	GHSA-X5JC-34XF-C24Q User Plugin for October CSS Allows XSS	14 May 202203:21	–	osv
Packet Storm	October CMS User 1.4.5 Cross Site Scripting	26 Apr 201800:00	–	packetstorm

# Exploit Title: October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting
# Date: 2018-04-03
# Author: 0xB9
# Software Link: https://octobercms.com/plugin/rainlab-user
# Version: 1.4.5
# Tested on: Ubuntu 17.10
# CVE: CVE-2018-10366

#1. Description:
Front-end user management for October CMS. Allows visitors to create a website.

#2. Proof of Concept:

Persistent XSS
- Go to the account page localhost/OctoberCMS/account/
- Register & enter the following for your full name <p """><SCRIPT>alert("XSS")</SCRIPT>">
- You will be alerted everytime you visit the account page localhost/OctoberCMS/account/

#3. Solution:
Update to 1.4.6

26 Apr 2018 00:00Current

6.3Medium risk

Vulners AI Score6.3

CVSS 24.3

CVSS 36.1

EPSS0.00482