PageKit CMS 1.0.13 Cross Site Scripting

2018.06.01

Credit: Jason Perry

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2018-11564

CWE: CWE-79

CVSS Base Score: 3.5/10

Impact Subscore: 2.9/10

Exploitability Subscore: 6.8/10

Exploit range: Remote

Attack complexity: Medium

Authentication: Single time

Confidentiality impact: None

Integrity impact: Partial

Availability impact: None

 CVE ID: CVE-2018-11564
Stored XSS in PageKit CMS 1.0.13 allows a user to upload malicious code via
the picture upload feature.
A user with elevated privileges could upload a photo to the system in an
SVG format. This file will be uploaded to the system and it will not be
stripped or filtered. The user can create a link on the website pointing to
"/storage/poc.svg" that will point to http://localhost/pagekit/
storage/poc.svg. When a user comes along to click that link, it will
trigger a XSS attack.

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

PageKit CMS 1.0.13 Cross Site Scripting

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.