CVE-2024-55451 — MEDIUM (4.8)

Vulnerability Description

A Stored Cross-Site Scripting (XSS) vulnerability exists in authenticated SVG file upload and viewing functionality in UJCMS 9.6.3. The vulnerability arises from insufficient sanitization of embedded attributes in uploaded SVG files. When a maliciously crafted SVG file is viewed by other backend users, it allows authenticated attackers to execute arbitrary JavaScript in the context of other backend users' browsers, potentially leading to the theft of sensitive tokens.

CVSS Score

4.8

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Ujcms	Ujcms	9.6.3

Related Weaknesses (CWE)

CWE-79

References

https://github.com/cydtseng/Vulnerability-Research/blob/main/ujcms/StoredXSS-SVGExploitThird Party Advisory
https://github.com/dromara/ujcmsProduct
https://github.com/cydtseng/Vulnerability-Research/blob/main/ujcms/StoredXSS-SVGExploitThird Party Advisory

FAQ

What is CVE-2024-55451?

CVE-2024-55451 is a vulnerability with a CVSS score of 4.8 (MEDIUM). A Stored Cross-Site Scripting (XSS) vulnerability exists in authenticated SVG file upload and viewing functionality in UJCMS 9.6.3. The vulnerability arises from insufficient sanitization of embedded ...

How severe is CVE-2024-55451?

CVE-2024-55451 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-55451?

Check the references section above for vendor advisories and patch information. Affected products include: Ujcms Ujcms.