CVE-2018-19146 — MEDIUM (4.8)

Vulnerability Description

Concrete5 8.4.3 has XSS because config/concrete.php allows uploads (by administrators) of SVG files that may contain HTML data with a SCRIPT element.

CVSS Score

4.8

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Concretecms	Concrete Cms	8.4.3

Related Weaknesses (CWE)

CWE-79

References

https://hackerone.com/concrete5?view_policy=trueThird Party Advisory
https://hackerone.com/reports/437863ExploitIssue TrackingThird Party Advisory
https://www.concrete5.org/Vendor Advisory
https://www.w3.org/TR/SVG2/intro.html#W3CCompatibilityThird Party Advisory
https://hackerone.com/concrete5?view_policy=trueThird Party Advisory
https://hackerone.com/reports/437863ExploitIssue TrackingThird Party Advisory
https://www.concrete5.org/Vendor Advisory
https://www.w3.org/TR/SVG2/intro.html#W3CCompatibilityThird Party Advisory

FAQ

What is CVE-2018-19146?

CVE-2018-19146 is a vulnerability with a CVSS score of 4.8 (MEDIUM). Concrete5 8.4.3 has XSS because config/concrete.php allows uploads (by administrators) of SVG files that may contain HTML data with a SCRIPT element.

How severe is CVE-2018-19146?

CVE-2018-19146 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-19146?

Check the references section above for vendor advisories and patch information. Affected products include: Concretecms Concrete Cms.