admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-08-15 21:00:56 +00:00
parent 21081f817b
commit c9cefc3aa9
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
1 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
2021/25xxx/CVE-2021-25955.json
View File

@ -4,7 +4,7 @@
"DATE_PUBLIC": "2021-08-10T21:00:00.000Z",
"ID": "CVE-2021-25955",
"STATE": "PUBLIC",
"TITLE": "Stored XSS in “Dolibarr” leads to privilege escalation"
"TITLE": "Stored XSS in \u201cDolibarr\u201d leads to privilege escalation"
},
"affects": {
"vendor": {
@ -47,7 +47,7 @@
"description_data": [
{
"lang": "eng",
"value": "In “Dolibarr ERP CRM”, WYSIWYG Editor module, v2.8.1 to v13.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the “Private Note” field at “/adherents/note.php?id=1” endpoint. These scripts are executed in a victims browser when they open the page containing the vulnerable field. In the worst case, the victim who inadvertently triggers the attack is a highly privileged administrator. The injected scripts can extract the Session ID, which can lead to full Account takeover of the admin and due to other vulnerability (Improper Access Control on Private notes) a low privileged user can update the private notes which could lead to privilege escalation."
"value": "In \u201cDolibarr ERP CRM\u201d, WYSIWYG Editor module, v2.8.1 to v13.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the \u201cPrivate Note\u201d field at \u201c/adherents/note.php?id=1\u201d endpoint. These scripts are executed in a victim\u2019s browser when they open the page containing the vulnerable field. In the worst case, the victim who inadvertently triggers the attack is a highly privileged administrator. The injected scripts can extract the Session ID, which can lead to full Account takeover of the admin and due to other vulnerability (Improper Access Control on Private notes) a low privileged user can update the private notes which could lead to privilege escalation."
}
]
},
@ -86,11 +86,13 @@
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25955"
"url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25955",
"name": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25955"
},
{
"refsource": "MISC",
"url": "https://github.com/Dolibarr/dolibarr/commit/796b2d201acb9938b903fb2afa297db289ecc93e"
"url": "https://github.com/Dolibarr/dolibarr/commit/796b2d201acb9938b903fb2afa297db289ecc93e",
"name": "https://github.com/Dolibarr/dolibarr/commit/796b2d201acb9938b903fb2afa297db289ecc93e"
}
]
},