cvelistv5 - cve-2018-6561

CVE-2018-6561 (GCVE-0-2018-6561)

Vulnerability from cvelistv5

Published

2018-02-02 15:00

Modified

2024-09-16 23:41

Severity ?

CWE

Summary

dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

WID-SEC-W-2023-2255

Vulnerability from csaf_certbund

Published

2023-09-03 22:00

Modified

2023-09-03 22:00

Summary

IBM Security Guardium: Schwachstelle ermöglicht Cross-Site Scripting

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

IBM Security Guardium ist eine Lösung für die Überwachung und Auditierung des Datenzugriffs.

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM Security Guardium ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

Betroffene Betriebssysteme

- UNIX - Linux - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM Security Guardium ist eine L\u00f6sung f\u00fcr die \u00dcberwachung und Auditierung des Datenzugriffs.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM Security Guardium ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2255 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2255.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2255 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2255"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 7030366 vom 2023-09-03",
        "url": "https://www.ibm.com/support/pages/node/7030366"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM Security Guardium: Schwachstelle erm\u00f6glicht Cross-Site Scripting",
    "tracking": {
      "current_release_date": "2023-09-03T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:58:00.075+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2255",
      "initial_release_date": "2023-09-03T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-09-03T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 3.0",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 3.0",
                  "product_id": "T029692",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 3.0.1",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 3.0.1",
                  "product_id": "T029693",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_3.0.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 4.0",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 4.0",
                  "product_id": "T029694",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 4.1",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 4.1",
                  "product_id": "T029695",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 4.1.1",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 4.1.1",
                  "product_id": "T029696",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_4.1.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Security Guardium"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-6561",
      "notes": [
        {
          "category": "description",
          "text": "In der Komponente \"Dojo Toolkit\" des Produktes IBM Security Guardium existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029695",
          "T029694",
          "T029693",
          "T029692",
          "T029696"
        ]
      },
      "release_date": "2023-09-03T22:00:00.000+00:00",
      "title": "CVE-2018-6561"
    }
  ]
}

wid-sec-w-2023-2255

Vulnerability from csaf_certbund

Published

2023-09-03 22:00

Modified

2023-09-03 22:00

Summary

IBM Security Guardium: Schwachstelle ermöglicht Cross-Site Scripting

Notes

Produktbeschreibung

IBM Security Guardium ist eine Lösung für die Überwachung und Auditierung des Datenzugriffs.

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM Security Guardium ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

Betroffene Betriebssysteme

- UNIX - Linux - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM Security Guardium ist eine L\u00f6sung f\u00fcr die \u00dcberwachung und Auditierung des Datenzugriffs.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM Security Guardium ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2255 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2255.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2255 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2255"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 7030366 vom 2023-09-03",
        "url": "https://www.ibm.com/support/pages/node/7030366"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM Security Guardium: Schwachstelle erm\u00f6glicht Cross-Site Scripting",
    "tracking": {
      "current_release_date": "2023-09-03T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:58:00.075+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2255",
      "initial_release_date": "2023-09-03T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-09-03T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 3.0",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 3.0",
                  "product_id": "T029692",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 3.0.1",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 3.0.1",
                  "product_id": "T029693",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_3.0.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 4.0",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 4.0",
                  "product_id": "T029694",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 4.1",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 4.1",
                  "product_id": "T029695",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Security Guardium Key Lifecycle Manager 4.1.1",
                "product": {
                  "name": "IBM Security Guardium Key Lifecycle Manager 4.1.1",
                  "product_id": "T029696",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:security_guardium:key_lifecycle_manager_4.1.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Security Guardium"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-6561",
      "notes": [
        {
          "category": "description",
          "text": "In der Komponente \"Dojo Toolkit\" des Produktes IBM Security Guardium existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029695",
          "T029694",
          "T029693",
          "T029692",
          "T029696"
        ]
      },
      "release_date": "2023-09-03T22:00:00.000+00:00",
      "title": "CVE-2018-6561"
    }
  ]
}

cnvd-2018-05471

Vulnerability from cnvd

Title

Dojo Toolkit跨站脚本漏洞

Description

Dojo Toolkit是Dojo基金会一个用JavaScript语言实现的开源DHTML工具包。该工具包易于建立互动的用户界面，Dojo的扩展包能够使用户的代码更容易维护，耦合性更低等。dijit.Editor是其中的一个所见即所得编辑器。 Dojo Toolkit 1.13版本中的dijit.Editor存在跨站脚本漏洞。远程攻击者可借助SVG元素中的onload属性利用该漏洞注入任意的Web脚本或HTML。

Severity

中

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法： https://dojotoolkit.org/

Reference

https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md

Impacted products

Name
Dojo Dojotoolkit 1.13

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-6561"
    }
  },
  "description": "Dojo Toolkit\u662fDojo\u57fa\u91d1\u4f1a\u4e00\u4e2a\u7528JavaScript\u8bed\u8a00\u5b9e\u73b0\u7684\u5f00\u6e90DHTML\u5de5\u5177\u5305\u3002\u8be5\u5de5\u5177\u5305\u6613\u4e8e\u5efa\u7acb\u4e92\u52a8\u7684\u7528\u6237\u754c\u9762\uff0cDojo\u7684\u6269\u5c55\u5305\u80fd\u591f\u4f7f\u7528\u6237\u7684\u4ee3\u7801\u66f4\u5bb9\u6613\u7ef4\u62a4\uff0c\u8026\u5408\u6027\u66f4\u4f4e\u7b49\u3002dijit.Editor\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6240\u89c1\u5373\u6240\u5f97\u7f16\u8f91\u5668\u3002\r\n\r\nDojo Toolkit 1.13\u7248\u672c\u4e2d\u7684dijit.Editor\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9SVG\u5143\u7d20\u4e2d\u7684onload\u5c5e\u6027\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u7684Web\u811a\u672c\u6216HTML\u3002",
  "discovererName": "unknow",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a\r\nhttps://dojotoolkit.org/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-05471",
  "openTime": "2018-03-16",
  "products": {
    "product": "Dojo Dojotoolkit 1.13"
  },
  "referenceLink": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md",
  "serverity": "\u4e2d",
  "submitTime": "2018-02-07",
  "title": "Dojo Toolkit\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

CERTFR-2024-AVI-0330

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
IBM	N/A	IBM Cognos Command Center versions antérieures à 10.2.5 IF2
IBM	WebSphere	IBM WebSphere Application Server Liberty versions 17.0.0.3 à 24.0.0.3 sans le correctif de sécurité PH59682
IBM	WebSphere	IBM WebSphere Hybrid Edition sans le correctif de sécurité PH59682
IBM	QRadar	QRadar Analyst Workflow versions antérieures à 2.32.1
IBM	WebSphere	IBM WebSphere Application Server versions 8.x et 9.x sans le correctif de sécurité PH59682
IBM	WebSphere	IBM WebSphere eXtreme Scale versions 8.6.1.x antérieures à 8.6.1.6 avec le correctif de sécurité PH60890

References

Title

Publication Time

fkie_cve-2018-6561

Vulnerability from fkie_nvd

Published

2018-02-02 15:29

Modified

2024-11-21 04:10

Severity ?

6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Summary

dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.

References

	URL	Tags
	cve@mitre.org	https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md	Exploit, Third Party Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md	Exploit, Third Party Advisory

Impacted products

	Vendor	Product	Version
	dojotoolkit	dojo	1.13.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:dojotoolkit:dojo:1.13.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "68C50401-0F97-4921-A19D-E1CC1172CEA4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element."
    },
    {
      "lang": "es",
      "value": "dijit.Editor en Dojo Toolkit 1.13 permite Cross-Site Scripting (XSS) a trav\u00e9s del atributo onload de un elemento SVG."
    }
  ],
  "id": "CVE-2018-6561",
  "lastModified": "2024-11-21T04:10:54.670",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-02-02T15:29:00.410",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2018-6561

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.

Aliases

CVE-2018-6561

Aliases

CVE-2018-6561

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-6561",
    "description": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.",
    "id": "GSD-2018-6561"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-6561"
      ],
      "details": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.",
      "id": "GSD-2018-6561",
      "modified": "2023-12-13T01:22:35.556962Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2018-6561",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md",
            "refsource": "MISC",
            "url": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003c1.13.1",
          "affected_versions": "All versions before 1.13.1",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2023-08-28",
          "description": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.",
          "fixed_versions": [
            "1.13.1"
          ],
          "identifier": "CVE-2018-6561",
          "identifiers": [
            "GHSA-wp32-wq34-2rqh",
            "CVE-2018-6561"
          ],
          "not_impacted": "All versions starting from 1.13.1",
          "package_slug": "npm/dijit",
          "pubdate": "2022-05-14",
          "solution": "Upgrade to version 1.13.1 or above.",
          "title": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2018-6561",
            "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md",
            "https://github.com/dojo/dijit/commit/d22d6cc3458c3c29d2d1fc44652b4bd7f10751f6",
            "https://github.com/advisories/GHSA-wp32-wq34-2rqh"
          ],
          "uuid": "26435307-740c-4081-9bf7-1a8e2964791c"
        },
        {
          "affected_range": "=1.13.0",
          "affected_versions": "Version 1.13.0",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2018-02-15",
          "description": "dijit.Editor in Dojo Toolkit allows XSS via the `onload` attribute of an `SVG` element.",
          "fixed_versions": [
            "1.13.1"
          ],
          "identifier": "CVE-2018-6561",
          "identifiers": [
            "CVE-2018-6561"
          ],
          "not_impacted": "All versions before 1.13.0, all versions after 1.13.0",
          "package_slug": "npm/dojo",
          "pubdate": "2018-02-02",
          "solution": "Upgrade to version 1.13.1 or above.",
          "title": "Cross-site Scripting",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2018-6561"
          ],
          "uuid": "b76476b9-8a73-4c2b-9f34-018322fb0816"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:dojotoolkit:dojo:1.13.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-6561"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2018-02-15T15:36Z",
      "publishedDate": "2018-02-02T15:29Z"
    }
  }
}

ghsa-wp32-wq34-2rqh

Vulnerability from github

Published

2022-05-14 03:44

Modified

2023-08-28 23:09

Severity ?

6.1 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Summary

dijit editor cross-site scripting vulnerability

Details

dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "npm",
        "name": "dijit"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.13.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2018-6561"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2023-08-28T23:09:37Z",
    "nvd_published_at": "2018-02-02T15:29:00Z",
    "severity": "MODERATE"
  },
  "details": "dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.",
  "id": "GHSA-wp32-wq34-2rqh",
  "modified": "2023-08-28T23:09:37Z",
  "published": "2022-05-14T03:44:34Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6561"
    },
    {
      "type": "WEB",
      "url": "https://github.com/dojo/dijit/commit/d22d6cc3458c3c29d2d1fc44652b4bd7f10751f6"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/dojo/dijit"
    },
    {
      "type": "WEB",
      "url": "https://github.com/imsebao/404team/blob/master/dijit_editor_xss.md"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
      "type": "CVSS_V3"
    }
  ],
  "summary": "dijit editor cross-site scripting vulnerability"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2018-6561 (GCVE-0-2018-6561)

Vulnerability from cvelistv5

WID-SEC-W-2023-2255

Vulnerability from csaf_certbund

wid-sec-w-2023-2255

Vulnerability from csaf_certbund

cnvd-2018-05471

Vulnerability from cnvd

CERTFR-2024-AVI-0330

Vulnerability from certfr_avis

Solution

fkie_cve-2018-6561

Vulnerability from fkie_nvd

gsd-2018-6561

Vulnerability from gsd

ghsa-wp32-wq34-2rqh

Vulnerability from github

Tags

Sightings

Nomenclature