| 제목 | nopCommerce up to 4.2.0 News and Blog Stored Cross Site Scripting (XSS) |
|---|
| 설명 | The application does not consistently validate client side input, and as a result of this it was identified that the web application was vulnerable to Stored Cross-Site Scripting.
The affected functionality is the SaveStoreMappings of the components \Presentation\Nop.Web\Areas\Admin\Controllers\NewsController.cs and \Presentation\Nop.Web\Areas\Admin\Controllers\BlogController.cs. CWE classifies this vulnerability as CWE-79. The issue is know to affect confidentiality and integrity. The issue has not been assigned a CVE ID yet.
The issue was discovered by Alessandro Magnosi (d3adc0de) on 12/04/2019. The exploitability is told to be easy. It is possible to launch the attack remotely. A single authentication is necessary for exploitation. Technical details are known as well as a proof-of-concept payload, but no real exploit has been released.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
It should be noted that the vulnerability has been found within an HTML content editor, which is naturally more affected by this kind of vulnerability, as the user can directly control the HTML structure of the page. The vendor reported the issue to be a “feature”. However, it was possible to note that a great effort had been made in order to avoid Cross-Site-Scripting, so it was chosen to classify that as an issue.
|
|---|
| 원천 | ⚠️ https://github.com/klezVirus/cves/tree/master/NopCommerce/Cross-Site-Scripting |
|---|
| 사용자 | Anonymous User |
|---|
| 제출 | 2019. 12. 06. PM 05:55 (6 연령 ago) |
|---|
| 모더레이션 | 2019. 12. 10. AM 09:01 (4 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 146824 [Nop Solution Ltd nopCommerce 까지 4.20 NewsController.cs SaveStoreMappings HTML Content 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|