Lucene search

Veracode Vulnerability DatabaseVERACODE:43980

HistoryOct 25, 2023 - 9:11 a.m.

Cross-site Scripting (XSS)

2023-10-2509:11:26

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

concrete5

cross-site scripting

input sanitization

javascript

browser

header

footer

seo

statistic

4.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.1%

JSON

Concrete5/concrete5 is vulnerable to Cross-site Scripting. This vulnerability exists due to the lack of user input sanitization, which allows an attacker to inject and execute malicious JavaScript in the browser through the e Header and Footer Tracking Codes of the SEO & Statistic.

CPENameOperatorVersion
concrete5/concrete5le9.2.1
concrete5/concrete5le9.2.1

CPE	Name	Operator	Version
	concrete5/concrete5	le	9.2.1
	concrete5/concrete5	le	9.2.1

References

github.com/advisories/GHSA-4qv6-37xq-mgq2

github.com/sromanhu/ConcreteCMS-Stored-XSS---TrackingCodes

github.com/sromanhu/CVE-2023-44760_ConcreteCMS-Stored-XSS---TrackingCodes/commit/ba627d3ea3d433429dd55c65f280dd8c3febf047

github.com/sromanhu/CVE-2023-44760_ConcreteCMS-Stored-XSS---TrackingCodes/issues/1

www.concretecms.org/about/project-news/security/security-advisory-2023-10-31-concrete-cms-rejects-cve-2023-44760-and-cve-2023-44766