Vulnerability Description
This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to inject arbitrary HTML/JS code and depending on the context. It will be outputted as an HTML on the page which gives opportunity for XSS or rendered on the server (puppeteer) which also gives opportunity for SSRF and Local File Read.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Osm-Static-Maps Project | Osm-Static-Maps | All versions |
Related Weaknesses (CWE)
References
- https://github.com/jperelli/osm-static-maps/blob/master/src/template.html%23L142Broken Link
- https://github.com/jperelli/osm-static-maps/pull/24PatchThird Party Advisory
- https://snyk.io/vuln/SNYK-JS-OSMSTATICMAPS-609637ExploitThird Party Advisory
- https://github.com/jperelli/osm-static-maps/blob/master/src/template.html%23L142Broken Link
- https://github.com/jperelli/osm-static-maps/pull/24PatchThird Party Advisory
- https://snyk.io/vuln/SNYK-JS-OSMSTATICMAPS-609637ExploitThird Party Advisory
FAQ
What is CVE-2020-7749?
CVE-2020-7749 is a vulnerability with a CVSS score of 7.6 (HIGH). This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to inject...
How severe is CVE-2020-7749?
CVE-2020-7749 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-7749?
Check the references section above for vendor advisories and patch information. Affected products include: Osm-Static-Maps Project Osm-Static-Maps.