Lucene search
K

11 matches found

Github Security Blog
Github Security Blog
added 2024/11/13 2:16 p.m.32 views

Craft CMS vulnerable to Potential Remote Code Execution via missing path normalization & Twig SSTI

Summary Missing normalizePath in the function FileHelper::absolutePath could lead to Remote Code Execution on the server via twig SSTI. Post-authentication, ALLOWADMINCHANGES=true Details Note: This is a sequel to CVE-2023-40035 In src/helpers/FileHelper.phpL106-L137, the function absolutePath...

7.2CVSS7.4AI score0.01308EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/11/13 2:16 p.m.22 views

GHSA-F3CW-HG6R-CHFV Craft CMS vulnerable to Potential Remote Code Execution via missing path normalization & Twig SSTI

Summary Missing normalizePath in the function FileHelper::absolutePath could lead to Remote Code Execution on the server via twig SSTI. Post-authentication, ALLOWADMINCHANGES=true Details Note: This is a sequel to CVE-2023-40035 In src/helpers/FileHelper.phpL106-L137, the function absolutePath...

8.6CVSS7.4AI score0.01308EPSS
Exploits1References4
OSV
OSV
added 2023/08/21 7:58 p.m.104 views

GHSA-44WR-RMWQ-3PHW Craft CMS vulnerable to Remote Code Execution via validatePath bypass

Summary Bypassing the validatePath function can lead to potential Remote Code Execution Post-authentication, ALLOWADMINCHANGES=true Details In bootstrap.php, the SystemPaths path is set as below. php // Set the vendor path. By default assume that it's 4 levels up from here $vendorPath =...

7.2CVSS7AI score0.01909EPSS
Exploits1References6
OSV
OSV
added 2023/05/22 8:36 p.m.34 views

GHSA-VQXF-R9PH-CC9C Craft CMS vulnerable to Remote Code Execution via unrestricted file extension

Summary Unrestricted file extension lead to a potential Remote Code Execution Authenticated, ALLOWADMINCHANGES=true Details Vulnerability Cause : If the name parameter value is not empty string'' in the View.php's doesTemplateExist - resolveTemplate - resolveTemplateInternal - resolveTemplate...

7.2CVSS7.5AI score0.01845EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/05/22 8:36 p.m.35 views

Craft CMS vulnerable to Remote Code Execution via unrestricted file extension

Summary Unrestricted file extension lead to a potential Remote Code Execution Authenticated, ALLOWADMINCHANGES=true Details Vulnerability Cause : If the name parameter value is not empty string'' in the View.php's doesTemplateExist - resolveTemplate - resolveTemplateInternal - resolveTemplate...

7.2CVSS8.1AI score0.01845EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/24 5:19 p.m.21 views

Comments plugin stored Cross-site Scripting (XSS) via an asset volume name

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name...

5.4CVSS5.7AI score0.0054EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2020/06/05 7:15 p.m.14 views

CVE-2020-13870

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name...

5.4CVSS5.3AI score0.0054EPSS
Exploits0References1
OSV
OSV
added 2020/06/05 7:15 p.m.20 views

CVE-2020-13870

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name...

5.4CVSS5.6AI score
Exploits0References1
Prion
Prion
added 2020/06/05 7:15 p.m.16 views

Cross site scripting

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name...

3.5CVSS5.2AI score0.0054EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/05 6:34 p.m.15 views

CVE-2020-13870

An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name...

5.2AI score0.0054EPSS
Exploits0References1
CVE
CVE
added 2020/06/05 6:34 p.m.119 views

CVE-2020-13870

CVE-2020-13870 affects the Craft CMS Comments plugin prior to 1.5.5, with a stored XSS flaw via an asset volume name. Root cause: lack of input validation leading to stored XSS. Impact is dependent on affected Craft CMS deployments; remediation is to upgrade the Comments plugin to 1.5.5 or later....

5.4CVSS5.1AI score0.0054EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder