A vulnerability, which was classified as critical, was found in discourse-bbcode (the affected version is unknown). This affects an unknown code of the component CSS Handler. The manipulation with an unknown input leads to a injection vulnerability. CWE is classifying the issue as CWE-74. The software constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:

discourse-bbcode is the official BBCode plugin for Discourse. Prior to commit 91478f5, CSS injection can occur when rendering content generated with the discourse-bccode plugin. This vulnerability only affects sites which have the discourse-bbcode plugin installed and enabled. This issue is patched in commit 91478f5. As a workaround, ensure that the Content Security Policy is enabled and monitor any posts that contain bbcode.

The weakness was disclosed 12/01/2022 as GHSA-8c87-xpqv-c7mp. The advisory is shared at github.com. This vulnerability is uniquely identified as CVE-2022-46162 since 11/28/2022. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1055 for this issue.

Applying the patch 91478f5cfecdcc43cf85b997168a8ecfd0f8df90 is able to eliminate this problem. The bugfix is ready for download at github.com.

Productinfo

Name

• discourse-bbcode

License

• open-source

CPE 2.3info

• 🔒

CPE 2.2info

• 🔒

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion