cvelistv5 - cve-2020-15275

CVE-2020-15275 (GCVE-0-2020-15275)

Vulnerability from cvelistv5

Published

2020-11-11 15:45

Modified

2024-08-04 13:15

Severity ?

8.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N

CWE

CWE-79 - Cross-site Scripting (XSS)

Summary

MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user's browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.

References

URL

Tags

security-advisories@github.com	https://advisory.checkmarx.net/advisory/CX-2020-4285	Exploit, Third Party Advisory
security-advisories@github.com	https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2	Patch, Third Party Advisory
security-advisories@github.com	https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11	Release Notes, Third Party Advisory
security-advisories@github.com	https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://advisory.checkmarx.net/advisory/CX-2020-4285	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43	Third Party Advisory

Impacted products

	Vendor	Product	Version
	moinwiki	moin-1.9	Version: < 1.9.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:15:19.004Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "moin-1.9",
          "vendor": "moinwiki",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.9.11"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79 Cross-site Scripting (XSS)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-03-30T21:15:23",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
        }
      ],
      "source": {
        "advisory": "GHSA-4q96-6xhq-ff43",
        "discovery": "UNKNOWN"
      },
      "title": "malicious SVG attachment causing stored XSS vulnerability in MoinMoin",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2020-15275",
          "STATE": "PUBLIC",
          "TITLE": "malicious SVG attachment causing stored XSS vulnerability in MoinMoin"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "moin-1.9",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 1.9.11"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "moinwiki"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-79 Cross-site Scripting (XSS)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43",
              "refsource": "CONFIRM",
              "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
            },
            {
              "name": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11",
              "refsource": "MISC",
              "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
            },
            {
              "name": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2",
              "refsource": "MISC",
              "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
            },
            {
              "name": "https://advisory.checkmarx.net/advisory/CX-2020-4285",
              "refsource": "MISC",
              "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-4q96-6xhq-ff43",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2020-15275",
    "datePublished": "2020-11-11T15:45:15",
    "dateReserved": "2020-06-25T00:00:00",
    "dateUpdated": "2024-08-04T13:15:19.004Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-15275\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2020-11-11T16:15:13.237\",\"lastModified\":\"2024-11-21T05:05:14.927\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.\"},{\"lang\":\"es\",\"value\":\"MoinMoin es un motor de wiki.\u0026#xa0;En MoinMoin antes de la versi\u00f3n 1.9.11, un atacante con permisos de escritura puede cargar un archivo SVG que contiene javascript malicioso.\u0026#xa0;Este javascript se ejecutar\u00e1 en el navegador de un usuario cuando el usuario est\u00e9 viendo ese archivo SVG en la wiki.\u0026#xa0;Se recomienda encarecidamente a los usuarios que se actualicen a una versi\u00f3n parcheada.\u0026#xa0;MoinMoin Wiki versi\u00f3n 1.9.11 tiene las correcciones necesarias y tambi\u00e9n contiene otras correcciones importantes\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N\",\"baseScore\":8.7,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":5.8},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:N/I:P/A:N\",\"baseScore\":3.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.8,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.9.11\",\"matchCriteriaId\":\"90280389-72FE-47AD-9A03-4287C050976A\"}]}]}],\"references\":[{\"url\":\"https://advisory.checkmarx.net/advisory/CX-2020-4285\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://advisory.checkmarx.net/advisory/CX-2020-4285\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

fkie_cve-2020-15275

Vulnerability from fkie_nvd

Published

2020-11-11 16:15

Modified

2024-11-21 05:05

Severity ?

8.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
5.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Summary

References

URL	Tags
security-advisories@github.com	https://advisory.checkmarx.net/advisory/CX-2020-4285	Exploit, Third Party Advisory
security-advisories@github.com	https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2	Patch, Third Party Advisory
security-advisories@github.com	https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11	Release Notes, Third Party Advisory
security-advisories@github.com	https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://advisory.checkmarx.net/advisory/CX-2020-4285	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43	Third Party Advisory

Impacted products

	Vendor	Product	Version
	moinmo	moinmoin	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "90280389-72FE-47AD-9A03-4287C050976A",
              "versionEndExcluding": "1.9.11",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes."
    },
    {
      "lang": "es",
      "value": "MoinMoin es un motor de wiki.\u0026#xa0;En MoinMoin antes de la versi\u00f3n 1.9.11, un atacante con permisos de escritura puede cargar un archivo SVG que contiene javascript malicioso.\u0026#xa0;Este javascript se ejecutar\u00e1 en el navegador de un usuario cuando el usuario est\u00e9 viendo ese archivo SVG en la wiki.\u0026#xa0;Se recomienda encarecidamente a los usuarios que se actualicen a una versi\u00f3n parcheada.\u0026#xa0;MoinMoin Wiki versi\u00f3n 1.9.11 tiene las correcciones necesarias y tambi\u00e9n contiene otras correcciones importantes"
    }
  ],
  "id": "CVE-2020-15275",
  "lastModified": "2024-11-21T05:05:14.927",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 3.5,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 6.8,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 8.7,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 5.8,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-11-11T16:15:13.237",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Primary"
    }
  ]
}

opensuse-su-2020:1966-1

Vulnerability from csaf_opensuse

Published

2020-11-19 07:33

Modified

2020-11-19 07:33

Summary

Security update for moinmoin-wiki

Notes

Title of the patch

Security update for moinmoin-wiki

Description of the patch

This update for moinmoin-wiki fixes the following issues: - update to version 1.9.11: CVE-2020-25074 (boo#1178744): fix remote code execution via cache action CVE-2020-15275 (boo#1178745): fix malicious SVG attachment causing stored XSS vulnerability

Patchnames

openSUSE-2020-1966

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for moinmoin-wiki",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for moinmoin-wiki fixes the following issues:\n\n- update to version 1.9.11:\n  CVE-2020-25074 (boo#1178744): fix remote code execution via cache action\n  CVE-2020-15275 (boo#1178745): fix malicious SVG attachment causing stored XSS vulnerability\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2020-1966",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1966-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2020:1966-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ZWQ3H4AUJA2F3ISKMWL6QTCZID5AYFKR/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2020:1966-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ZWQ3H4AUJA2F3ISKMWL6QTCZID5AYFKR/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1178744",
        "url": "https://bugzilla.suse.com/1178744"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1178745",
        "url": "https://bugzilla.suse.com/1178745"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15275 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15275/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25074 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25074/"
      }
    ],
    "title": "Security update for moinmoin-wiki",
    "tracking": {
      "current_release_date": "2020-11-19T07:33:28Z",
      "generator": {
        "date": "2020-11-19T07:33:28Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2020:1966-1",
      "initial_release_date": "2020-11-19T07:33:28Z",
      "revision_history": [
        {
          "date": "2020-11-19T07:33:28Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "moinmoin-wiki-1.9.11-lp152.3.3.1.noarch",
                "product": {
                  "name": "moinmoin-wiki-1.9.11-lp152.3.3.1.noarch",
                  "product_id": "moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.2",
                "product": {
                  "name": "openSUSE Leap 15.2",
                  "product_id": "openSUSE Leap 15.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "moinmoin-wiki-1.9.11-lp152.3.3.1.noarch as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
        },
        "product_reference": "moinmoin-wiki-1.9.11-lp152.3.3.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-15275",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15275"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15275",
          "url": "https://www.suse.com/security/cve/CVE-2020-15275"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178745 for CVE-2020-15275",
          "url": "https://bugzilla.suse.com/1178745"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-11-19T07:33:28Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-15275"
    },
    {
      "cve": "CVE-2020-25074",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25074"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The cache action in action/cache.py in MoinMoin through 1.9.10 allows directory traversal through a crafted HTTP request. An attacker who can upload attachments to the wiki can use this to achieve remote code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25074",
          "url": "https://www.suse.com/security/cve/CVE-2020-25074"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178744 for CVE-2020-25074",
          "url": "https://bugzilla.suse.com/1178744"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:moinmoin-wiki-1.9.11-lp152.3.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-11-19T07:33:28Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-25074"
    }
  ]
}

opensuse-su-2020:1998-1

Vulnerability from csaf_opensuse

Published

2020-11-23 07:20

Modified

2020-11-23 07:20

Summary

Security update for moinmoin-wiki

Notes

Title of the patch

Security update for moinmoin-wiki

Description of the patch

Patchnames

openSUSE-2020-1998

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for moinmoin-wiki",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for moinmoin-wiki fixes the following issues:\n\n- update to version 1.9.11:\n  CVE-2020-25074 (boo#1178744): fix remote code execution via cache action\n  CVE-2020-15275 (boo#1178745): fix malicious SVG attachment causing stored XSS vulnerability\n\nThis update was imported from the openSUSE:Leap:15.2:Update update project.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2020-1998",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1998-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2020:1998-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GMUGPIPMLTP6KSHV2XRIESFS7OGOBXW6/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2020:1998-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GMUGPIPMLTP6KSHV2XRIESFS7OGOBXW6/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1178744",
        "url": "https://bugzilla.suse.com/1178744"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1178745",
        "url": "https://bugzilla.suse.com/1178745"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15275 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15275/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25074 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25074/"
      }
    ],
    "title": "Security update for moinmoin-wiki",
    "tracking": {
      "current_release_date": "2020-11-23T07:20:43Z",
      "generator": {
        "date": "2020-11-23T07:20:43Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2020:1998-1",
      "initial_release_date": "2020-11-23T07:20:43Z",
      "revision_history": [
        {
          "date": "2020-11-23T07:20:43Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "moinmoin-wiki-1.9.11-bp152.4.3.1.noarch",
                "product": {
                  "name": "moinmoin-wiki-1.9.11-bp152.4.3.1.noarch",
                  "product_id": "moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Package Hub 15 SP2",
                "product": {
                  "name": "SUSE Package Hub 15 SP2",
                  "product_id": "SUSE Package Hub 15 SP2"
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "moinmoin-wiki-1.9.11-bp152.4.3.1.noarch as component of SUSE Package Hub 15 SP2",
          "product_id": "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
        },
        "product_reference": "moinmoin-wiki-1.9.11-bp152.4.3.1.noarch",
        "relates_to_product_reference": "SUSE Package Hub 15 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-15275",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15275"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15275",
          "url": "https://www.suse.com/security/cve/CVE-2020-15275"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178745 for CVE-2020-15275",
          "url": "https://bugzilla.suse.com/1178745"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-11-23T07:20:43Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-15275"
    },
    {
      "cve": "CVE-2020-25074",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25074"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The cache action in action/cache.py in MoinMoin through 1.9.10 allows directory traversal through a crafted HTTP request. An attacker who can upload attachments to the wiki can use this to achieve remote code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25074",
          "url": "https://www.suse.com/security/cve/CVE-2020-25074"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178744 for CVE-2020-25074",
          "url": "https://bugzilla.suse.com/1178744"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP2:moinmoin-wiki-1.9.11-bp152.4.3.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-11-23T07:20:43Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-25074"
    }
  ]
}

cnvd-2020-62997

Vulnerability from cnvd

Title

MoinMoin跨站脚本漏洞

Description

MoinMoin是一套开源的、可扩展的基于Python环境的wiki引擎程序。 MoinMoin 1.9.11之前版本中存在跨站脚本漏洞，攻击者可利用该漏洞通过SVG附件触发跨站点脚本，以便在web站点的上下文中运行JavaScript代码。

Severity

高

Patch Name

MoinMoin跨站脚本漏洞的补丁

Patch Description

MoinMoin是一套开源的、可扩展的基于Python环境的wiki引擎程序。 MoinMoin 1.9.11之前版本中存在跨站脚本漏洞，攻击者可利用该漏洞通过SVG附件触发跨站点脚本，以便在web站点的上下文中运行JavaScript代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.debian.org/security/2020/dsa-4787

Reference

https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11

Impacted products

Name
MoinMoin MoinMoin <1.9.11

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-15275",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-15275"
    }
  },
  "description": "MoinMoin\u662f\u4e00\u5957\u5f00\u6e90\u7684\u3001\u53ef\u6269\u5c55\u7684\u57fa\u4e8ePython\u73af\u5883\u7684wiki\u5f15\u64ce\u7a0b\u5e8f\u3002\n\nMoinMoin 1.9.11\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7SVG\u9644\u4ef6\u89e6\u53d1\u8de8\u7ad9\u70b9\u811a\u672c\uff0c\u4ee5\u4fbf\u5728web\u7ad9\u70b9\u7684\u4e0a\u4e0b\u6587\u4e2d\u8fd0\u884cJavaScript\u4ee3\u7801\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.debian.org/security/2020/dsa-4787",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-62997",
  "openTime": "2020-11-13",
  "patchDescription": "MoinMoin\u662f\u4e00\u5957\u5f00\u6e90\u7684\u3001\u53ef\u6269\u5c55\u7684\u57fa\u4e8ePython\u73af\u5883\u7684wiki\u5f15\u64ce\u7a0b\u5e8f\u3002\r\n\r\nMoinMoin 1.9.11\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7SVG\u9644\u4ef6\u89e6\u53d1\u8de8\u7ad9\u70b9\u811a\u672c\uff0c\u4ee5\u4fbf\u5728web\u7ad9\u70b9\u7684\u4e0a\u4e0b\u6587\u4e2d\u8fd0\u884cJavaScript\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "MoinMoin\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "MoinMoin MoinMoin \u003c1.9.11"
  },
  "referenceLink": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11",
  "serverity": "\u9ad8",
  "submitTime": "2020-11-12",
  "title": "MoinMoin\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

gsd-2020-15275

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2020-15275

Aliases

CVE-2020-15275

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-15275",
    "description": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.",
    "id": "GSD-2020-15275",
    "references": [
      "https://www.suse.com/security/cve/CVE-2020-15275.html",
      "https://www.debian.org/security/2020/dsa-4787",
      "https://ubuntu.com/security/CVE-2020-15275"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-15275"
      ],
      "details": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.",
      "id": "GSD-2020-15275",
      "modified": "2023-12-13T01:21:43.469335Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2020-15275",
        "STATE": "PUBLIC",
        "TITLE": "malicious SVG attachment causing stored XSS vulnerability in MoinMoin"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "moin-1.9",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "\u003c 1.9.11"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "moinwiki"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes."
          }
        ]
      },
      "impact": {
        "cvss": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 8.7,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
          "version": "3.1"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-79 Cross-site Scripting (XSS)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43",
            "refsource": "CONFIRM",
            "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
          },
          {
            "name": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11",
            "refsource": "MISC",
            "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
          },
          {
            "name": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2",
            "refsource": "MISC",
            "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
          },
          {
            "name": "https://advisory.checkmarx.net/advisory/CX-2020-4285",
            "refsource": "MISC",
            "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
          }
        ]
      },
      "source": {
        "advisory": "GHSA-4q96-6xhq-ff43",
        "discovery": "UNKNOWN"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003c1.9.11",
          "affected_versions": "All versions before 1.9.11",
          "cvss_v2": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2021-04-05",
          "description": "MoinMoin is a wiki engine. In MoinMoin, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki has the necessary fixes and also contains other important fixes.",
          "fixed_versions": [
            "1.9.11"
          ],
          "identifier": "CVE-2020-15275",
          "identifiers": [
            "GHSA-4q96-6xhq-ff43",
            "CVE-2020-15275"
          ],
          "not_impacted": "All versions starting from 1.9.11",
          "package_slug": "pypi/moin",
          "pubdate": "2020-11-11",
          "solution": "Upgrade to version 1.9.11 or above.",
          "title": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
          "urls": [
            "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43",
            "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2",
            "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11",
            "https://pypi.org/project/moin/",
            "https://nvd.nist.gov/vuln/detail/CVE-2020-15275",
            "https://advisory.checkmarx.net/advisory/CX-2020-4285",
            "https://github.com/advisories/GHSA-4q96-6xhq-ff43"
          ],
          "uuid": "49ea294a-0c35-48fa-b399-2828f4c62054"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:moinmo:moinmoin:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "1.9.11",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2020-15275"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
            },
            {
              "name": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
            },
            {
              "name": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11",
              "refsource": "MISC",
              "tags": [
                "Release Notes",
                "Third Party Advisory"
              ],
              "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
            },
            {
              "name": "https://advisory.checkmarx.net/advisory/CX-2020-4285",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 6.8,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.3,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2022-10-18T20:47Z",
      "publishedDate": "2020-11-11T16:15Z"
    }
  }
}

pysec-2020-241

Vulnerability from pysec

Published

2020-11-11 16:15

Modified

2021-08-27 03:22

Details

Impacted products

Name	purl
moin	pkg:pypi/moin

Aliases

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "moin",
        "purl": "pkg:pypi/moin"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "31de9139d0aabc171e94032168399b4a0b2a88a2"
            }
          ],
          "repo": "https://github.com/moinwiki/moin-1.9",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.9.11"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "1.8.4",
        "1.8.5",
        "1.8.6",
        "1.8.7",
        "1.9.0",
        "1.9.1",
        "1.9.10",
        "1.9.2",
        "1.9.3",
        "1.9.4",
        "1.9.5",
        "1.9.6",
        "1.9.7",
        "1.9.8",
        "1.9.9"
      ]
    }
  ],
  "aliases": [
    "CVE-2020-15275",
    "GHSA-4q96-6xhq-ff43"
  ],
  "details": "MoinMoin is a wiki engine. In MoinMoin before version 1.9.11, an attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki. Users are strongly advised to upgrade to a patched version. MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.",
  "id": "PYSEC-2020-241",
  "modified": "2021-08-27T03:22:07.834309Z",
  "published": "2020-11-11T16:15:00Z",
  "references": [
    {
      "type": "FIX",
      "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
    },
    {
      "type": "WEB",
      "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
    },
    {
      "type": "ADVISORY",
      "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
    }
  ]
}

ghsa-4q96-6xhq-ff43

Vulnerability from github

Published

2020-11-11 15:54

Modified

2024-10-07 15:01

Severity ?

8.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
6.4 (Medium) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N

Summary

malicious SVG attachment causing stored XSS vulnerability

Details

Impact

An attacker with write permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user's browser when the user is viewing that SVG file on the wiki.

Patches

Users are strongly advised to upgrade to a patched version.

MoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.

Workarounds

It is not advised to work around this, but to upgrade MoinMoin to a patched version.

That said, a work around via a Content Security Policy in the web server might be possible.

Also, it is of course helpful if you give write permissions (which include uploading attachments) only to trusted users.

For more information

If you have any questions or comments about this advisory, email me at twaldmann@thinkmo.de.

Credits

This vulnerability was discovered by:

Catarina Leite from the Checkmarx SCA AppSec team

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "moin"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.9.11"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2020-15275"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2020-11-11T15:49:35Z",
    "nvd_published_at": "2020-11-11T16:15:00Z",
    "severity": "MODERATE"
  },
  "details": "### Impact\nAn attacker with `write` permissions can upload an SVG file that contains malicious javascript. This javascript will be executed in a user\u0027s browser when the user is viewing that SVG file on the wiki.\n\n### Patches\nUsers are strongly advised to upgrade to a patched version.\n\nMoinMoin Wiki 1.9.11 has the necessary fixes and also contains other important fixes.\n\n### Workarounds\nIt is not advised to work around this, but to upgrade MoinMoin to a patched version.\n\nThat said, a work around via a Content Security Policy in the web server might be possible.\n\nAlso, it is of course helpful if you give `write` permissions (which include uploading attachments) only to trusted users.\n\n### For more information\nIf you have any questions or comments about this advisory, email me at [twaldmann@thinkmo.de](mailto:twaldmann@thinkmo.de).\n\n### Credits\n\nThis vulnerability was discovered by:\n\nCatarina Leite from the Checkmarx SCA AppSec team",
  "id": "GHSA-4q96-6xhq-ff43",
  "modified": "2024-10-07T15:01:08Z",
  "published": "2020-11-11T15:54:41Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/moinwiki/moin-1.9/security/advisories/GHSA-4q96-6xhq-ff43"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15275"
    },
    {
      "type": "WEB",
      "url": "https://github.com/moinwiki/moin-1.9/commit/31de9139d0aabc171e94032168399b4a0b2a88a2"
    },
    {
      "type": "WEB",
      "url": "https://advisory.checkmarx.net/advisory/CX-2020-4285"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/moinwiki/moin-1.9"
    },
    {
      "type": "WEB",
      "url": "https://github.com/moinwiki/moin-1.9/releases/tag/1.9.11"
    },
    {
      "type": "WEB",
      "url": "https://github.com/pypa/advisory-database/tree/main/vulns/moin/PYSEC-2020-241.yaml"
    },
    {
      "type": "WEB",
      "url": "https://pypi.org/project/moin"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "malicious SVG attachment causing stored XSS vulnerability"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2020-15275 (GCVE-0-2020-15275)

Vulnerability from cvelistv5

fkie_cve-2020-15275

Vulnerability from fkie_nvd

opensuse-su-2020:1966-1

Vulnerability from csaf_opensuse

opensuse-su-2020:1998-1

Vulnerability from csaf_opensuse

cnvd-2020-62997

Vulnerability from cnvd

gsd-2020-15275

Vulnerability from gsd

pysec-2020-241

Vulnerability from pysec

ghsa-4q96-6xhq-ff43

Vulnerability from github

Impact

Patches

Workarounds

For more information

Credits

Tags

Sightings

Nomenclature