CVE-2023-52085

2023-12-2900:15:50

Google

osv.dev

winter cms

colorpicker formwidget

local file inclusion

patch

v1.2.4

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

67.8%

JSON

Winter is a free, open-source content management system. Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be included without further processing in the compilation of custom stylesheets via LESS. This had the potential to lead to a Local File Inclusion vulnerability. This issue has been patched in v1.2.4.

CPENameOperatorVersion
wintereq1.0.376
wintereq1.0.442
wintereq1.0.392
wintereq1.0.422
wintereq1.0.433
wintereq1.0.368
wintereq1.0.419
wintereq1.0.464
wintereq1.0.377
wintereq1.0.342

Name	Operator	Version
winter	eq	1.0.376
winter	eq	1.0.442
winter	eq	1.0.392
winter	eq	1.0.422
winter	eq	1.0.433
winter	eq	1.0.368
winter	eq	1.0.419
winter	eq	1.0.464
winter	eq	1.0.377
winter	eq	1.0.342