CVE-2017-15878
published 2017-10-24CVE-2017-15878: A cross-site scripting (XSS) vulnerability exists in fields/types/markdown/MarkdownType.js in KeystoneJS before 4.0.0-beta.7 via the Contact Us feature.
PriorityP338medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
3.42%
87.4th percentile
A cross-site scripting (XSS) vulnerability exists in fields/types/markdown/MarkdownType.js in KeystoneJS before 4.0.0-beta.7 via the Contact Us feature.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| keystonejs | keystone | < 4.0.0 | 4.0.0 |
| keystonejs | keystone | <= 0.3.22 | — |
| keystonejs | keystone | — | — |
| openstack | keystone | >= 0 < 4.0.0 | 4.0.0 |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Cross-Site Scripting in keystone
ghsa·2017-11-15
CVE-2017-15878 [MEDIUM] CWE-79 Cross-Site Scripting in keystone
Cross-Site Scripting in keystone
Versions of `keystone` prior to 4.0.0 are vulnerable to Cross-Site Scripting (XSS). The package fails to sanitize user input on the `Contact Us` page, allowing attackers to submit contact forms with malicious JavaScript in the message field. The output is not properly encoded leading an admin that opens new inquiry to execute the arbitrary JavaScript supplied in their browser.
## Recommendation
Update to version 4.0.0 or later.
OSV
Cross-Site Scripting in keystone
osv·2017-11-15
CVE-2017-15878 [MEDIUM] Cross-Site Scripting in keystone
Cross-Site Scripting in keystone
Versions of `keystone` prior to 4.0.0 are vulnerable to Cross-Site Scripting (XSS). The package fails to sanitize user input on the `Contact Us` page, allowing attackers to submit contact forms with malicious JavaScript in the message field. The output is not properly encoded leading an admin that opens new inquiry to execute the arbitrary JavaScript supplied in their browser.
## Recommendation
Update to version 4.0.0 or later.
No detection rules found.
No writeups or analysis indexed.
http://blog.securelayer7.net/keystonejs-open-source-penetration-testing-report/http://www.securityfocus.com/bid/101541https://github.com/keystonejs/keystone/pull/4478https://packetstormsecurity.com/files/144756/KeystoneJS-4.0.0-beta.5-Unauthenticated-Stored-Cross-Site-Scripting.htmlhttps://www.exploit-db.com/exploits/43054/http://blog.securelayer7.net/keystonejs-open-source-penetration-testing-report/http://www.securityfocus.com/bid/101541https://github.com/keystonejs/keystone/pull/4478https://packetstormsecurity.com/files/144756/KeystoneJS-4.0.0-beta.5-Unauthenticated-Stored-Cross-Site-Scripting.htmlhttps://www.exploit-db.com/exploits/43054/
2017-10-24
Published