CVE-2018-1213
published 2018-03-26CVE-2018-1213: Dell EMC Isilon OneFS versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 and 8.1.0.2 is…
PriorityP352high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
EXPLOIT
EPSS
2.01%
78.4th percentile
Dell EMC Isilon OneFS versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 and 8.1.0.2 is affected by a cross-site request forgery vulnerability. A malicious user may potentially exploit this vulnerability to send unauthorized requests to the server on behalf of authenticated users of the application.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | emc_isilon_onefs | — | — |
| dell | emc_isilon_onefs | — | — |
| dell | emc_isilon_onefs | 7.2.1.0 – 7.2.1.6 | — |
| dell | emc_isilon_onefs | 8.0.0.0 – 8.0.0.6 | — |
| dell | emc_isilon_onefs | 8.0.1.0 – 8.0.1.2 | — |
| dell | emc_isilon_onefs | 8.1.0.0 – 8.1.0.1 | — |
| dell_emc | isilon_onefs | — | — |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting
exploitdb·2019-01-28·CVSS 6.1
CVE-2019-6979 [MEDIUM] MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting
MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting
---
# Exploit Title: MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting
# Date: 1/25/2018
# Author: 0xB9
# Twitter: @0xB9Sec
# Contact: 0xB9[at]pm.me
# Software Link: https://community.mybb.com/mods.php?action=view&pid=1213
# Version: 1.0.2
# Tested on: Ubuntu 18.04
# CVE: CVE-2019-6979
1. Description:
This plugin keeps a record of a users IP & User-Agent history. The User-Agent isn't sanitized to user input allowing for an XSS via ACP.
2. Proof of Concept:
- Change your User-Agent to a payload alert('XSS')
- Log into an account
When admin visits the IP/User-Agent history page the payload will execute
http://localhost/[path]/admin/index.php?module=tools-ip_history_logs
3. Solution:
Update to 1.0.3
Exploit-DB
Dell EMC Isilon OneFS - Multiple Vulnerabilities
exploitdb·2018-02-14·CVSS 4.8
CVE-2018-1213 [MEDIUM] Dell EMC Isilon OneFS - Multiple Vulnerabilities
Dell EMC Isilon OneFS - Multiple Vulnerabilities
---
Core Security - Corelabs Advisory
http://corelabs.coresecurity.com/
Dell EMC Isilon OneFS Multiple Vulnerabilities
1. **Advisory Information**
Title: Dell EMC Isilon OneFS Multiple Vulnerabilities
Advisory ID: CORE-2017-0009
Advisory URL:
http://www.coresecurity.com/advisories/dell-emc-isilon-onefs-multiple-vulnerabilities
Date published: 2018-02-14
Date of last update: 2018-02-14
Vendors contacted: Dell EMC
Release mode: Coordinated release
2. **Vulnerability Information**
Class: Cross-Site Request Forgery [CWE-352], Improper Privilege
Management [CWE-269], Improper Privilege Management [CWE-269], Improper
Neutralization of Input During Web Page Generation [CWE-79], Improper
Neutralization of Input During Web Page Generation [CWE-
No writeups or analysis indexed.
http://seclists.org/fulldisclosure/2018/Mar/50http://www.securityfocus.com/bid/103033https://www.coresecurity.com/advisories/dell-emc-isilon-onefs-multiple-vulnerabilitieshttps://www.exploit-db.com/exploits/44039/http://seclists.org/fulldisclosure/2018/Mar/50http://www.securityfocus.com/bid/103033https://www.coresecurity.com/advisories/dell-emc-isilon-onefs-multiple-vulnerabilitieshttps://www.exploit-db.com/exploits/44039/
2018-03-26
Published