| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| The vulnerability of the official interface for developing container applications in Plone Docker exists due to the lack of measures to neutralize special elements. This allows a hacker to execute arbitrary code. | 30 Jan 202400:00 | ā | bdu_fstec | |
| CVE-2024-23055 | 25 Jan 202423:26 | ā | circl | |
| Plone Security Vulnerability | 25 Jan 202400:00 | ā | cnnvd | |
| CVE-2024-23055 | 25 Jan 202400:00 | ā | cve | |
| CVE-2024-23055 | 25 Jan 202400:00 | ā | cvelist | |
| CVE-2024-23055 | 25 Jan 202422:15 | ā | nvd | |
| CVE-2024-23055 | 25 Jan 202422:15 | ā | osv | |
| Remote code execution | 25 Jan 202422:15 | ā | prion | |
| PT-2024-1348 | 25 Jan 202400:00 | ā | ptsecurity | |
| CVE-2024-23055 | 23 May 202509:40 | ā | redhatcve |
id: CVE-2024-23055
info:
name: Plone Docker - Host Header Injection
author: theamanrawat
severity: medium
description: |
Plone Docker Official Image 5.2.13 (5221) is vulnerable to Host Header Injection due to improper validation of input by the HOST headers. This can lead to Cross-Site Scripting (XSS) attacks when the malicious Host header value is reflected in the response.
impact: |
Remote attackers can execute arbitrary code on the server, potentially leading to full system compromise.
remediation: |
Update to the latest version of Plone Docker or apply security patches addressing HOST header validation.
reference:
- https://github.com/c0d3x27/CVEs/tree/main/CVE-2024-23055
- https://github.com/advisories/GHSA-fpqg-fv5v-vhpr
- https://nvd.nist.gov/vuln/detail/CVE-2024-23055
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2024-23055
epss-score: 0.01246
epss-percentile: 0.65656
cwe-id: CWE-79
metadata:
verified: true
max-request: 1
shodan-query: http.component:"Plone"
tags: cve,cve2024,plone,xss,host-header,injection
http:
- raw:
- |
GET / HTTP/1.1
Host: {{randstr}}.tld
matchers-condition: and
matchers:
- type: word
part: body
words:
- '{{randstr}}.tld'
- 'PORTAL_URL'
condition: and
- type: word
part: header
words:
- "text/html"
- type: status
status:
- 200
# digest: 4a0a00473045022100ac233106f2a8cdce502d957f59a7cf26f62100fa3cd1d6401fb6c019be2fbe1a02201b0bcb14cd3d7a0211b2ba098da1410145f704ba1883fd5e2096a90932e14133:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation withĀ Vulners data
WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data
Api
Power your application withĀ Vulners API
The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access
App
Assess and manage vulnerabilities withĀ VulnersĀ tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation