nystudio107/craft-seomatic is vulnerable to cross-site scripting. The vulnerability exists because the actionSeoFileLink
function of FileController.php
does not properly check the file types, allowing an attacker to inject and execute malicious javascript by submitting a GET request to /index.php?ction=seomatic/file/seo-file-link
url with base64 encoded url parameter.
CPE | Name | Operator | Version |
---|---|---|---|
nystudio107/craft-seomatic | le | 3.4.10 | |
nystudio107/craft-seomatic | le | 3.4.10 |
github.com/advisories/GHSA-6hjc-m38h-7jhh
github.com/nystudio107/craft-seomatic/blob/develop/CHANGELOG.md
github.com/nystudio107/craft-seomatic/blob/develop/CHANGELOG.md#security-1
github.com/nystudio107/craft-seomatic/commit/4e46b792ce973ac0c652fb330055f41aca1981c8
github.com/nystudio107/craft-seomatic/commit/5f2cdc7c39e0a4bfb60d2f84131508f0a87b2873