Lucene search
GoogleOSV:GHSA-XM59-JVXM-CP3VHistoryMay 24, 2022 - 4:49 p.m.
mxGraph vulnerable to cross-site scripting in color field
2022-05-2416:49:07
Google
osv.dev
1
mxgraph
cross-site scripting
draw.io diagrams
confluence
vulnerability
javascript
html
proof of concept
sanitization
browser
session
attack
background color.
mxGraph through 4.0.0, related to the draw.io Diagrams plugin before 8.3.14 for Confluence and other products, is vulnerable to cross-site scripting. draw.io Diagrams allows the creation and editing of draw.io-based diagrams in Confluence. Among other things, it allows to set the background color of text displayed in the diagram. The color provided by the user is notproperly sanitized, leading to HTML and JavaScript code to be displayed “as it is” to visitors of the page. This allows attackers to execute JavaScript code in the context of the visitor’s browser and session and to e.g. run Confluence command under the visitor’s user or attack the visitor’s browser.
Proof of Concept (PoC):
- Create a new draw.io Diagram, add an element and edit its background color and enter some text to the element
- Enter the following “color”:
onMouseOver=alert(1) a= - Save and view the resulting diagram, moving your mouse over the text
Related
nvd
nvd
CVE-2019-13127
2019-07-01 15:15:11
cve
cve
CVE-2019-13127
2019-07-01 15:15:11
cvelist
cvelist
CVE-2019-13127
2019-07-01 14:33:36
github
github
mxGraph vulnerable to cross-site scripting in color field
2022-05-24 16:49:07
ubuntucve
ubuntucve
CVE-2019-13127
2019-07-01 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2019-07-02 03:10:15
prion
prion
Input validation
2019-07-01 15:15:00
osv
osv
CVE-2019-13127
2019-07-01 15:15:11
githubexploit
githubexploit
Exploit for Cross-site Scripting in Draw Draw.Io Diagrams
2020-12-01 09:18:57