Lucene search

K
osvGoogleOSV:GO-2023-1751
HistoryMay 05, 2023 - 9:10 p.m.

Improper sanitization of CSS values in html/template

2023-05-0521:10:20
Google
osv.dev
19
css
sanitization
html
injection
template
software

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%

Angle brackets (<>) are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a ‘/’ character can result in unexpectedly closing the CSS context and allowing for injection of unexpected HTML, if executed with untrusted input.

CPENameOperatorVersion
stdlibge1.20.0-0
stdliblt1.20.4
stdliblt1.19.9

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%