Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS03bWo0LTI5ODQtOTU1Zs4AAUyG
AlchemyCMS is vulnerable to stored XSS via the /admin/pictures image field
A stored XSS vulnerability has been discovered in version 4.1.0 of AlchemyCMS via the /admin/pictures image filename field.
Permalink: https://github.com/advisories/GHSA-7mj4-2984-955fJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS03bWo0LTI5ODQtOTU1Zs4AAUyG
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: almost 2 years ago
Updated: about 1 month ago
CVSS Score: 5.9
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
Identifiers: GHSA-7mj4-2984-955f, CVE-2018-18307
References:
- https://nvd.nist.gov/vuln/detail/CVE-2018-18307
- http://packetstormsecurity.com/files/149787/Alchemy-CMS-4.1-Stable-Cross-Site-Scripting.html
- https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/base_controller.rb#L15
- https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/pictures_controller.rb#L5
- https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/resources_controller.rb#L21
- https://github.com/advisories/GHSA-7mj4-2984-955f
Blast Radius: 11.5
Affected Packages
rubygems:alchemy_cms
Dependent packages: 24Dependent repositories: 88
Downloads: 783,594 total
Affected Version Ranges: = 4.1.0
No known fixed version
All affected versions: 4.1.0