Lucene search

K
vulnrichmentConcreteCMSVULNRICHMENT:CVE-2024-8661
HistorySep 16, 2024 - 5:37 p.m.

CVE-2024-8661 Concrete CMS version 9.0.0 to 9.3.3 and below 8.5.19 are vulnerable to Stored XSS in the "Next&Previous Nav" block

2024-09-1617:37:29
CWE-79
ConcreteCMS
github.com
3
concrete cms
stored xss
next&previous nav

CVSS4

4.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

ACTIVE

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/SC:N/VI:L/SI:N/VA:N/SA:N

AI Score

5.5

Confidence

High

EPSS

0

Percentile

16.3%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

Concrete CMS versions 9.0.0 to 9.3.3 and below 8.5.18 are vulnerable to Stored XSS in the β€œNext&Previous Nav” block. A rogue administrator could add a malicious payload by executing it in the browsers of targeted users. The Concrete CMS Security Team gave this vulnerability a CVSS v4 score of 4.6 with vector CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Β Since the β€œNext&Previous Nav” block output was not sufficiently sanitized, the malicious payload could be executed in the browsers of targeted users.Β Thanks, Chu Quoc Khanh for reporting.

CVSS4

4.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

ACTIVE

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/SC:N/VI:L/SI:N/VA:N/SA:N

AI Score

5.5

Confidence

High

EPSS

0

Percentile

16.3%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

Related for VULNRICHMENT:CVE-2024-8661