CVE-2020-11083 — LOW (3.5) — White Hats Nepal

Q: How severe is CVE-2020-11083?

CVE-2020-11083 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-11083?

Check the references section above for vendor advisories and patch information. Affected products include: Octobercms October.

Vulnerability Description

In October from version 1.0.319 and before version 1.0.466, a user with access to a markdown FormWidget that stores data persistently could create a stored XSS attack against themselves and any other users with access to the generated HTML from the field. This has been fixed in 1.0.466. For users of the RainLab.Blog plugin, this has also been fixed in 1.4.1.

CVSS Score

3.5

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Octobercms	October	>= 1.0.319, < 1.0.466

Related Weaknesses (CWE)

CWE-79

References

http://packetstormsecurity.com/files/158730/October-CMS-Build-465-XSS-File-Read-ExploitThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2020/Aug/2ExploitMailing ListThird Party Advisory
https://github.com/octobercms/october/commit/9ecfb4867baae14a0d3f99f5b5c1e8a979aPatchThird Party Advisory
https://github.com/octobercms/october/security/advisories/GHSA-w4pj-7p68-3vgvPatchThird Party Advisory
https://github.com/rainlab/blog-plugin/commit/6ae19a6e16ef3ba730692bc899851342c8PatchThird Party Advisory
http://packetstormsecurity.com/files/158730/October-CMS-Build-465-XSS-File-Read-ExploitThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2020/Aug/2ExploitMailing ListThird Party Advisory
https://github.com/octobercms/october/commit/9ecfb4867baae14a0d3f99f5b5c1e8a979aPatchThird Party Advisory
https://github.com/octobercms/october/security/advisories/GHSA-w4pj-7p68-3vgvPatchThird Party Advisory
https://github.com/rainlab/blog-plugin/commit/6ae19a6e16ef3ba730692bc899851342c8PatchThird Party Advisory

FAQ

What is CVE-2020-11083?

CVE-2020-11083 is a vulnerability with a CVSS score of 3.5 (LOW). In October from version 1.0.319 and before version 1.0.466, a user with access to a markdown FormWidget that stores data persistently could create a stored XSS attack against themselves and any other ...

How severe is CVE-2020-11083?

CVE-2020-11083 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-11083?

Check the references section above for vendor advisories and patch information. Affected products include: Octobercms October.