CVE-2010-1593

Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via (1) the CommenterURL parameter to PostCommentForm, and in the Forum module before 0.2.5 in SilverStripe before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via (2) the Search parameter to forums/search (aka the search script).

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://open.silverstripe.org/wiki/ChangeLog/2.3.5
http://open.silverstripe.org/changeset/97074	Exploit Patch
http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0450.html	Exploit
http://secunia.com/advisories/38347	Vendor Advisory
http://secunia.com/advisories/38290	Vendor Advisory
http://osvdb.org/61921
http://groups.google.com/group/silverstripe-announce/browse_thread/thread/f51749342eee9456	Patch
http://www.securityfocus.com/bid/37923	Patch
http://www.silverstripe.org/security-releases/	Patch Vendor Advisory
http://osvdb.org/61923
https://exchange.xforce.ibmcloud.com/vulnerabilities/55839
https://exchange.xforce.ibmcloud.com/vulnerabilities/55838
http://www.securityfocus.com/archive/1/509139/100/0/threaded

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:silverstripe:silverstripe:2.3.1:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.1.0:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc2::::::
	cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc1::::::
	cpe:2.3:a:silverstripe:silverstripe:2.3.3:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.3.2:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.1.1:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.2.2:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc1::::::
	cpe:2.3:a:silverstripe:silverstripe:2.0.0:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.2.1:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc2::::::
	cpe:2.3:a:silverstripe:silverstripe:2.2.0:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc3::::::
	cpe:2.3:a:silverstripe:silverstripe:2.2.4:::::::*
	cpe:2.3:a:silverstripe:silverstripe::::::::
	cpe:2.3:a:silverstripe:silverstripe:2.0.2:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.3.0:::::::*
	cpe:2.3:a:silverstripe:silverstripe:2.0.1:::::::*

Information

Published : 2010-04-28 16:30

Updated : 2018-10-10 12:57

NVD link : CVE-2010-1593

Mitre link : CVE-2010-1593

JSON object : View

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Products Affected

silverstripe

silverstripe

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://open.silverstripe.org/wiki/ChangeLog/2.3.5", "name": "http://open.silverstripe.org/wiki/ChangeLog/2.3.5", "tags": [], "refsource": "CONFIRM"}, {"url": "http://open.silverstripe.org/changeset/97074", "name": "http://open.silverstripe.org/changeset/97074", "tags": ["Exploit", "Patch"], "refsource": "CONFIRM"}, {"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0450.html", "name": "20100122 Silverstripe <= v2.3.4: two XSS vulnerabilities", "tags": ["Exploit"], "refsource": "FULLDISC"}, {"url": "http://secunia.com/advisories/38347", "name": "38347", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/38290", "name": "38290", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://osvdb.org/61921", "name": "61921", "tags": [], "refsource": "OSVDB"}, {"url": "http://groups.google.com/group/silverstripe-announce/browse_thread/thread/f51749342eee9456", "name": "http://groups.google.com/group/silverstripe-announce/browse_thread/thread/f51749342eee9456", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/37923", "name": "37923", "tags": ["Patch"], "refsource": "BID"}, {"url": "http://www.silverstripe.org/security-releases/", "name": "http://www.silverstripe.org/security-releases/", "tags": ["Patch", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://osvdb.org/61923", "name": "61923", "tags": [], "refsource": "OSVDB"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/55839", "name": "silverstripe-search-xss(55839)", "tags": [], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/55838", "name": "silverstripe-comment-xss(55838)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/archive/1/509139/100/0/threaded", "name": "20100122 Silverstripe <= v2.3.4: two XSS vulnerabilities", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via (1) the CommenterURL parameter to PostCommentForm, and in the Forum module before 0.2.5 in SilverStripe before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via (2) the Search parameter to forums/search (aka the search script)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-79"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2010-1593", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2010-04-28T23:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.3.4"}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:silverstripe:silverstripe:2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-10T19:57Z"}

4.3 /10