FKIE_CVE-2018-5249

Vulnerability from fkie_nvd - Published: 2018-01-05 20:29 - Updated: 2024-11-21 04:08
Severity ?
6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Summary
Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).
References
cve@mitre.orghttps://github.com/shaarli/Shaarli/pull/1046Release Notes, Third Party Advisory
cve@mitre.orghttps://github.com/shaarli/Shaarli/releases/tag/v0.8.5Third Party Advisory
cve@mitre.orghttps://github.com/shaarli/Shaarli/releases/tag/v0.9.3Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://github.com/shaarli/Shaarli/pull/1046Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://github.com/shaarli/Shaarli/releases/tag/v0.8.5Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://github.com/shaarli/Shaarli/releases/tag/v0.9.3Release Notes, Third Party Advisory
Impacted products
Vendor Product Version
shaarli_project shaarli *
shaarli_project shaarli *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:shaarli_project:shaarli:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A15BA1B9-CB9B-4E2C-B8BC-F056451DC57F",
              "versionEndExcluding": "0.8.5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:shaarli_project:shaarli:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF58258C-9FE8-4363-939F-E08387AE1F22",
              "versionEndExcluding": "0.9.3",
              "versionStartIncluding": "0.9.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form\u0027s username field (aka the login parameter to the ban_canLogin function in index.php)."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de Cross-Site Scripting (XSS) en Shaarli, en versiones anteriores a la 0.8.5 y las versiones 0.9.x anteriores a la 0.9.3 permite que atacantes remotos inyecten c\u00f3digo arbitrario mediante el campo username del formulario de inicio de sesi\u00f3n (tambi\u00e9n conocido como el par\u00e1metro login en la funci\u00f3n ban_canLogin en index.php)."
    }
  ],
  "id": "CVE-2018-5249",
  "lastModified": "2024-11-21T04:08:25.457",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-01-05T20:29:00.220",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/shaarli/Shaarli/pull/1046"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/shaarli/Shaarli/releases/tag/v0.8.5"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/shaarli/Shaarli/releases/tag/v0.9.3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/shaarli/Shaarli/pull/1046"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/shaarli/Shaarli/releases/tag/v0.8.5"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/shaarli/Shaarli/releases/tag/v0.9.3"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.