cnvd - cnvd-2024-20789

CNVD-2024-20789

Vulnerability from cnvd - Published: 2024-04-28

Title

PublicCMS跨站请求伪造漏洞

Description

PublicCMS是一个内容管理系统。 PubliCMS 4.0.202302.e版本存在跨站请求伪造漏洞，该漏洞源于WEB应用未充分验证请求是否来自可信用户。攻击者可利用该漏洞伪造恶意请求诱骗受害者点击执行敏感操作。

Severity

中

Formal description

厂商尚未发布漏洞修复程序，请及时关注更新： https://wordpress.org/plugins/scrollsequence/

Reference

https://patchstack.com/database/vulnerability/scrollsequence/wordpress-scrollsequence-plugin-1-5-4-cross-site-scripting-xss-vulnerability?_s_id=cve

Impacted products

Name
PublicCMS PublicCMS 4.0.202302.e

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-2911",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-2911"
    }
  },
  "description": "PublicCMS\u662f\u4e00\u4e2a\u5185\u5bb9\u7ba1\u7406\u7cfb\u7edf\u3002\n\nPubliCMS 4.0.202302.e\u7248\u672c\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eWEB\u5e94\u7528\u672a\u5145\u5206\u9a8c\u8bc1\u8bf7\u6c42\u662f\u5426\u6765\u81ea\u53ef\u4fe1\u7528\u6237\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4f2a\u9020\u6076\u610f\u8bf7\u6c42\u8bf1\u9a97\u53d7\u5bb3\u8005\u70b9\u51fb\u6267\u884c\u654f\u611f\u64cd\u4f5c\u3002",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://wordpress.org/plugins/scrollsequence/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-20789",
  "openTime": "2024-04-28",
  "products": {
    "product": "PublicCMS PublicCMS 4.0.202302.e"
  },
  "referenceLink": "https://patchstack.com/database/vulnerability/scrollsequence/wordpress-scrollsequence-plugin-1-5-4-cross-site-scripting-xss-vulnerability?_s_id=cve",
  "serverity": "\u4e2d",
  "submitTime": "2024-03-28",
  "title": "PublicCMS\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e"
}

CVE-2024-2911 (GCVE-0-2024-2911)

Vulnerability from cvelistv5 – Published: 2024-03-26 21:31 – Updated: 2024-09-09 15:26

Title

Tianjin PubliCMS cross-site request forgery

Summary

A vulnerability, which was classified as problematic, was found in Tianjin PubliCMS 4.0.202302.e. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity ?

6.9 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

4.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CWE

CWE-352 - Cross-Site Request Forgery

Assigner

VulDB

References

URL

Tags

	https://vuldb.com/?id.257979	vdb-entrytechnical-description
	https://vuldb.com/?ctiid.257979	signaturepermissions-required
	https://vuldb.com/?submit.300339	third-party-advisory
	https://github.com/sweatxi/BugHub/blob/main/publi…	exploit

Impacted products

	Vendor	Product	Version
	Tianjin	PubliCMS	Affected: 4.0.202302.e

Credits

hexixi (VulDB User)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:tianjin:publicms:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "publicms",
            "vendor": "tianjin",
            "versions": [
              {
                "status": "affected",
                "version": "4.0.202302.e"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-2911",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-26T19:42:36.255527Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-26T19:43:38.636Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T19:25:42.161Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VDB-257979 | Tianjin PubliCMS cross-site request forgery",
            "tags": [
              "vdb-entry",
              "x_transferred"
            ],
            "url": "https://vuldb.com/?id.257979"
          },
          {
            "name": "VDB-257979 | CTI Indicators (IOB, IOC)",
            "tags": [
              "signature",
              "permissions-required",
              "x_transferred"
            ],
            "url": "https://vuldb.com/?ctiid.257979"
          },
          {
            "name": "Submit #300339 | TIANJIN Heycore Technology Co.Ltd publiccms  V4.0.202302.e CSRF",
            "tags": [
              "third-party-advisory",
              "x_transferred"
            ],
            "url": "https://vuldb.com/?submit.300339"
          },
          {
            "tags": [
              "exploit",
              "x_transferred"
            ],
            "url": "https://github.com/sweatxi/BugHub/blob/main/publiccms_csrf.pdf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "PubliCMS",
          "vendor": "Tianjin",
          "versions": [
            {
              "status": "affected",
              "version": "4.0.202302.e"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "hexixi (VulDB User)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability, which was classified as problematic, was found in Tianjin PubliCMS 4.0.202302.e. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way."
        },
        {
          "lang": "de",
          "value": "Es wurde eine problematische Schwachstelle in Tianjin PubliCMS 4.0.202302.e gefunden. Betroffen hiervon ist ein unbekannter Ablauf. Durch das Manipulieren mit unbekannten Daten kann eine cross-site request forgery-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff \u00fcber das Netzwerk. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "baseScore": 6.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0"
          }
        },
        {
          "cvssV3_1": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
            "version": "3.1"
          }
        },
        {
          "cvssV3_0": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
            "version": "3.0"
          }
        },
        {
          "cvssV2_0": {
            "baseScore": 5,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-352",
              "description": "CWE-352 Cross-Site Request Forgery",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-09T15:26:06.451Z",
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB"
      },
      "references": [
        {
          "name": "VDB-257979 | Tianjin PubliCMS cross-site request forgery",
          "tags": [
            "vdb-entry",
            "technical-description"
          ],
          "url": "https://vuldb.com/?id.257979"
        },
        {
          "name": "VDB-257979 | CTI Indicators (IOB, IOC)",
          "tags": [
            "signature",
            "permissions-required"
          ],
          "url": "https://vuldb.com/?ctiid.257979"
        },
        {
          "name": "Submit #300339 | TIANJIN Heycore Technology Co.Ltd publiccms  V4.0.202302.e CSRF",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://vuldb.com/?submit.300339"
        },
        {
          "tags": [
            "exploit"
          ],
          "url": "https://github.com/sweatxi/BugHub/blob/main/publiccms_csrf.pdf"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-03-26T00:00:00.000Z",
          "value": "Advisory disclosed"
        },
        {
          "lang": "en",
          "time": "2024-03-26T00:00:00.000Z",
          "value": "CVE reserved"
        },
        {
          "lang": "en",
          "time": "2024-03-26T01:00:00.000Z",
          "value": "VulDB entry created"
        },
        {
          "lang": "en",
          "time": "2024-06-27T05:46:48.000Z",
          "value": "VulDB entry last update"
        }
      ],
      "title": "Tianjin PubliCMS cross-site request forgery"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "cveId": "CVE-2024-2911",
    "datePublished": "2024-03-26T21:31:04.749Z",
    "dateReserved": "2024-03-26T13:48:21.715Z",
    "dateUpdated": "2024-09-09T15:26:06.451Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2024-20789

CVE-2024-2911 (GCVE-0-2024-2911)

Tags

Sightings

Nomenclature