| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| The vulnerability of the official interface for developing container applications in Plone Docker exists due to the lack of measures to neutralize special elements. This allows a hacker to execute arbitrary code. | 30 Jan 202400:00 | – | bdu_fstec | |
| CVE-2024-23055 | 25 Jan 202423:26 | – | circl | |
| Plone Security Vulnerability | 25 Jan 202400:00 | – | cnnvd | |
| CVE-2024-23055 | 25 Jan 202400:00 | – | cve | |
| CVE-2024-23055 | 25 Jan 202400:00 | – | cvelist | |
| CVE-2024-23055 | 25 Jan 202422:15 | – | nvd | |
| CVE-2024-23055 | 25 Jan 202422:15 | – | osv | |
| Remote code execution | 25 Jan 202422:15 | – | prion | |
| PT-2024-1348 | 25 Jan 202400:00 | – | ptsecurity | |
| CVE-2024-23055 | 23 May 202509:40 | – | redhatcve |
id: CVE-2024-23055
info:
name: Plone Docker - Host Header Injection
author: theamanrawat
severity: medium
description: |
Plone Docker Official Image 5.2.13 (5221) is vulnerable to Host Header Injection due to improper validation of input by the HOST headers. This can lead to Cross-Site Scripting (XSS) attacks when the malicious Host header value is reflected in the response.
impact: |
Remote attackers can execute arbitrary code on the server, potentially leading to full system compromise.
remediation: |
Update to the latest version of Plone Docker or apply security patches addressing HOST header validation.
reference:
- https://github.com/c0d3x27/CVEs/tree/main/CVE-2024-23055
- https://github.com/advisories/GHSA-fpqg-fv5v-vhpr
- https://nvd.nist.gov/vuln/detail/CVE-2024-23055
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2024-23055
epss-score: 0.01246
epss-percentile: 0.65717
cwe-id: CWE-79
metadata:
verified: true
max-request: 1
shodan-query: http.component:"Plone"
tags: cve,cve2024,plone,xss,host-header,injection
http:
- raw:
- |
GET / HTTP/1.1
Host: {{randstr}}.tld
matchers-condition: and
matchers:
- type: word
part: body
words:
- '{{randstr}}.tld'
- 'PORTAL_URL'
condition: and
- type: word
part: header
words:
- "text/html"
- type: status
status:
- 200
# digest: 4b0a004830460221009ee854f68db6d5222556e8737b9a447662407f0c62bfc88e3fd2c29868b1907f022100f9418862c31f6ab61438e31a6d6ce2d460ae7d25ab1f0c715a86e8ec27332df1:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation