XSS vulnerability leveraged through referrers could allow un-authorized admin access in Mautic

2021-01-1920:43:56

Google

osv.dev

0.004 Low

EPSS

Percentile

72.7%

JSON

Impact

This is a cross-site scripting vulnerability which affects every version of Mautic and could allow an attacker unauthorised administrator level access to Mautic.

This vulnerability was reported by Naveen Sunkavally at Horizon3.ai.

Patches

Upgrade to 3.2.4 or 2.16.5.

Link to patch for 2.x versions: https://github.com/mautic/mautic/compare/2.16.4...2.16.5.diff

Link to patch for 3.x versions: https://github.com/mautic/mautic/compare/3.2.2...3.2.4.diff

Workarounds

None

For more information

If you have any questions or comments about this advisory:

Post in https://forum.mautic.org/c/support
Email us at [email protected]

CPENameOperatorVersion
mautic/coreeq3.2.3
mautic/coreeq2.12.1
mautic/coreeq2.5.1
mautic/coreeq2.16.2-beta
mautic/coreeq2.14.0-beta
mautic/coreeq3.1.0-rc
mautic/coreeq2.15.3
mautic/coreeq2.16.0-beta
mautic/coreeq2.13.1
mautic/coreeq2.11.0

Name	Operator	Version
mautic/core	eq	3.2.3
mautic/core	eq	2.12.1
mautic/core	eq	2.5.1
mautic/core	eq	2.16.2-beta
mautic/core	eq	2.14.0-beta
mautic/core	eq	3.1.0-rc
mautic/core	eq	2.15.3
mautic/core	eq	2.16.0-beta
mautic/core	eq	2.13.1
mautic/core	eq	2.11.0