Vulnerability Description
An XSS issue was discovered in Serenity Serene (and StartSharp) before 6.7.0. When users upload temporary files, some specific file endings are not allowed, but it is possible to upload .html or .htm files containing an XSS payload. The resulting link can be sent to an administrator user.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Serenity | Serene | < 6.7.0 |
| Serenity | Startsharp | < 6.7.0 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/172648/Serenity-StartSharp-Software-File-Up
- http://seclists.org/fulldisclosure/2023/May/14
- https://github.com/serenity-is/Serenity/commit/11b9d267f840513d04b4f4d4876de7823PatchVendor Advisory
- http://packetstormsecurity.com/files/172648/Serenity-StartSharp-Software-File-Up
- http://seclists.org/fulldisclosure/2023/May/14
- https://github.com/serenity-is/Serenity/commit/11b9d267f840513d04b4f4d4876de7823PatchVendor Advisory
FAQ
What is CVE-2023-31285?
CVE-2023-31285 is a vulnerability with a CVSS score of 6.1 (MEDIUM). An XSS issue was discovered in Serenity Serene (and StartSharp) before 6.7.0. When users upload temporary files, some specific file endings are not allowed, but it is possible to upload .html or .htm ...
How severe is CVE-2023-31285?
CVE-2023-31285 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-31285?
Check the references section above for vendor advisories and patch information. Affected products include: Serenity Serene, Serenity Startsharp.