cnvd - cnvd-2018-05184

cnvd-2018-05184

Vulnerability from cnvd

Title: LimeSurvey Theme Uninstallation跨站请求伪造漏洞

Description:

LimeSurvey（前称PHPSurveyor）是LimeSurvey团队开发的一套开源的在线问卷调查程序，它支持调查程序开发、调查问卷发布以及数据收集等功能。Theme Uninstallatio是其中的一个主题卸载组件。

LimeSurvey 3.0.0-beta.3+17110版本中Theme Uninstallation的存在跨站请求伪造漏洞。远程攻击者可利用该漏洞删除管理员全部的主题，造成网站无法使用。

Severity: 中

Patch Name: LimeSurvey Theme Uninstallation 跨站请求伪造漏洞的补丁

Patch Description:

LimeSurvey 3.0.0-beta.3+17110版本中Theme Uninstallation的存在跨站请求伪造漏洞。远程攻击者可利用该漏洞删除管理员全部的主题，造成网站无法使用。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd

Reference: https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd

Impacted products

Name
LimeSurvey LimeSurvey 3.0.0-beta.3+17110

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1000053"
    }
  },
  "description": "LimeSurvey\uff08\u524d\u79f0PHPSurveyor\uff09\u662fLimeSurvey\u56e2\u961f\u5f00\u53d1\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5728\u7ebf\u95ee\u5377\u8c03\u67e5\u7a0b\u5e8f\uff0c\u5b83\u652f\u6301\u8c03\u67e5\u7a0b\u5e8f\u5f00\u53d1\u3001\u8c03\u67e5\u95ee\u5377\u53d1\u5e03\u4ee5\u53ca\u6570\u636e\u6536\u96c6\u7b49\u529f\u80fd\u3002Theme Uninstallatio\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4e3b\u9898\u5378\u8f7d\u7ec4\u4ef6\u3002\r\n\r\nLimeSurvey 3.0.0-beta.3+17110\u7248\u672c\u4e2dTheme Uninstallation\u7684\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5220\u9664\u7ba1\u7406\u5458\u5168\u90e8\u7684\u4e3b\u9898\uff0c\u9020\u6210\u7f51\u7ad9\u65e0\u6cd5\u4f7f\u7528\u3002",
  "discovererName": "Unknow",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-05184",
  "openTime": "2018-03-14",
  "patchDescription": "LimeSurvey\uff08\u524d\u79f0PHPSurveyor\uff09\u662fLimeSurvey\u56e2\u961f\u5f00\u53d1\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5728\u7ebf\u95ee\u5377\u8c03\u67e5\u7a0b\u5e8f\uff0c\u5b83\u652f\u6301\u8c03\u67e5\u7a0b\u5e8f\u5f00\u53d1\u3001\u8c03\u67e5\u95ee\u5377\u53d1\u5e03\u4ee5\u53ca\u6570\u636e\u6536\u96c6\u7b49\u529f\u80fd\u3002Theme Uninstallatio\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4e3b\u9898\u5378\u8f7d\u7ec4\u4ef6\u3002\r\n\r\nLimeSurvey 3.0.0-beta.3+17110\u7248\u672c\u4e2dTheme Uninstallation\u7684\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5220\u9664\u7ba1\u7406\u5458\u5168\u90e8\u7684\u4e3b\u9898\uff0c\u9020\u6210\u7f51\u7ad9\u65e0\u6cd5\u4f7f\u7528\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "LimeSurvey Theme Uninstallation \u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "LimeSurvey LimeSurvey 3.0.0-beta.3+17110"
  },
  "referenceLink": "https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd",
  "serverity": "\u4e2d",
  "submitTime": "2018-02-26",
  "title": "LimeSurvey Theme Uninstallation\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e"
}

CVE-2018-1000053 (GCVE-0-2018-1000053)

Vulnerability from cvelistv5

Published

2018-02-09 23:00

Modified

2024-08-05 12:33

Severity ?

CWE

Summary

LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery (CSRF) vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, rendering the website unusable. This attack appear to be exploitable via Simple HTML markup can be used to send a GET request to the affected endpoint.

References

▼	URL	Tags
	https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T12:33:48.730Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "dateAssigned": "2018-01-25T00:00:00",
      "datePublic": "2018-01-24T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery (CSRF) vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, rendering the website unusable. This attack appear to be exploitable via Simple HTML markup can be used to send a GET request to the affected endpoint."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-02-09T22:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_ASSIGNED": "1/25/2018 19:48:59",
          "ID": "CVE-2018-1000053",
          "REQUESTER": "strukt93@gmail.com",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery (CSRF) vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, rendering the website unusable. This attack appear to be exploitable via Simple HTML markup can be used to send a GET request to the affected endpoint."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd",
              "refsource": "CONFIRM",
              "url": "https://github.com/LimeSurvey/LimeSurvey/commit/1e440208a8d8bfd71ad7802e6369a136e8bba3dd"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-1000053",
    "datePublished": "2018-02-09T23:00:00",
    "dateReserved": "2018-02-05T00:00:00",
    "dateUpdated": "2024-08-05T12:33:48.730Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted