Lucene search

Veracode Vulnerability DatabaseVERACODE:41000

HistoryJun 23, 2023 - 4:03 p.m.

Server-Side Template Injection

2023-06-2316:03:45

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

vulnerable

validation

user settings

remote attacker

information disclosure

craftcms

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.004 Low

EPSS

Percentile

73.6%

JSON

craftcms/cms is vulnerable to Server-Side Template Injection. The vulnerability exists due to a lack of validation in the User Photo Location Field in User Settings. which allows a remote attacker to inject a trig template, resulting in information disclosure.

CPENameOperatorVersion
craftcms/cmsle5.0.x-dev
craftcms/cmsle5.0.x-dev

CPE	Name	Operator	Version
	craftcms/cms	le	5.0.x-dev
	craftcms/cms	le	5.0.x-dev

References

datnlq.gitbook.io/cve/craft-cms/cve-2023-30179-server-side-template-injection

github.com/craftcms/cms/blob/develop/CHANGELOG.md#442---2023-03-14

github.com/github/advisory-database/pull/2443#issuecomment-1610040714

github.com/github/advisory-database/pull/2443#issuecomment-1610634200

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.004 Low

EPSS

Percentile

73.6%

JSON

Related for VERACODE:41000