Zend-Navigation vulnerable to Cross-site Scripting

2024-06-0722:06:01

Google

osv.dev

zend framework

cross-site scripting

view helpers

xss

vulnerability

5.8 Medium

AI Score

Confidence

High

JSON

Many Zend Framework 2 view helpers were using the escapeHtml() view helper in order to escape HTML attributes, instead of the more appropriate escapeHtmlAttr(). In situations where user data and/or JavaScript is used to seed attributes, this can lead to potential cross site scripting (XSS) attack vectors.

Vulnerable view helpers include:

All Zend\Form view helpers.
Most Zend\Navigation (aka Zend\View\Helper\Navigation\*) view helpers.
All “HTML Element” view helpers: htmlFlash(), htmlPage(), htmlQuickTime().
Zend\View\Helper\Gravatar

CPENameOperatorVersion
zendframework/zend-navigationeq2.0.3
zendframework/zend-navigationeq2.1.2
zendframework/zend-navigationeq2.2.2
zendframework/zend-navigationeq2.1.1
zendframework/zend-navigationeq2.2.0rc1
zendframework/zend-navigationeq2.0.4
zendframework/zend-navigationeq2.0.8
zendframework/zend-navigationeq2.2.0
zendframework/zend-navigationeq2.1.3
zendframework/zend-navigationeq2.2.5

Name	Operator	Version
zendframework/zend-navigation	eq	2.0.3
zendframework/zend-navigation	eq	2.1.2
zendframework/zend-navigation	eq	2.2.2
zendframework/zend-navigation	eq	2.1.1
zendframework/zend-navigation	eq	2.2.0rc1
zendframework/zend-navigation	eq	2.0.4
zendframework/zend-navigation	eq	2.0.8
zendframework/zend-navigation	eq	2.2.0
zendframework/zend-navigation	eq	2.1.3
zendframework/zend-navigation	eq	2.2.5

Rows per page:

1-10 of 241

References

framework.zend.com/security/advisory/ZF2014-03

github.com/FriendsOfPHP/security-advisories/blob/master/zendframework/zend-navigation/ZF2014-03.yaml

github.com/zendframework/zend-navigation

5.8 Medium

AI Score

Confidence

High

JSON