CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53864 – Cross-site Scripting in a field that is used in the Content name pattern in ibexa/admin-ui
https://notcve.org/view.php?id=CVE-2024-53864
29 Nov 2024 — Ibexa Admin UI Bundle is all the necessary parts to run the Ibexa DXP Back Office interface. The Content name pattern is used to build Content names from one or more fields. An XSS vulnerability has been found in this mechanism. Content edit permission is required to exploit it. After the fix, any existing injected XSS will not run. • https://developers.ibexa.co/security-advisories/ibexa-sa-2024-006-vulnerabilities-in-content-name-pattern-commerce-shop-and-varnish-vhost-templates • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43369 – Persistent Cross-site Scripting in Ibexa RichText Field Type
https://notcve.org/view.php?id=CVE-2024-43369
15 Aug 2024 — Ibexa RichText Field Type is a Field Type for supporting rich formatted text stored in a structured XML format. In versions on the 4.6 branch prior to 4.6.10, the validator for the RichText fieldtype blocklists `javascript:` and `vbscript:` in links to prevent XSS. This can leave other options open, and the check can be circumvented using upper case. Content editing permissions for RichText content is required to exploit this vulnerability, which typically means Editor role or higher. The fix implements an ... • https://github.com/ibexa/fieldtype-richtext/security/advisories/GHSA-hvcf-6324-cjh7 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39318 – Ibexa Admin UI vulnerable to DOM-based Cross-site Scripting in file upload widget
https://notcve.org/view.php?id=CVE-2024-39318
31 Jul 2024 — The Ibexa Admin UI Bundle contains all the necessary parts to run the Ibexa DXP Back Office interface. The file upload widget is vulnerable to XSS payloads in filenames. Access permission to upload files is required. As such, in most cases only authenticated editors and administrators will have the required permission. It is not persistent, i.e. the payload is only executed during the upload. • https://github.com/ibexa/admin-ui/security/advisories/GHSA-qm44-wjm2-pr59 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-23065
https://notcve.org/view.php?id=CVE-2020-23065
26 Jun 2023 — Cross Site Scripting vulnerabiltiy in eZ Systems AS eZPublish Platform v.5.4 and eZ Publish Legacy v.5.4 allows a remote authenticated attacker to execute arbitrary code via the video-js.swf. • https://ezplatform.com/security-advisories/ezsa-2020-003-xss-in-demobundle-ezdemo-bundled-videojs • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2021-46875
https://notcve.org/view.php?id=CVE-2021-46875
12 Mar 2023 — An issue was discovered in eZ Platform Ibexa Kernel before 1.3.1.1. An XSS attack can occur because JavaScript code can be uploaded in a .html or .js file. • https://github.com/ezsystems/ezpublish-kernel/commit/29fecd2afe86f763510f10c02f14962d028f311b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2021-46876
https://notcve.org/view.php?id=CVE-2021-46876
12 Mar 2023 — An issue was discovered in eZ Publish Ibexa Kernel before 7.5.15.1. The /user/sessions endpoint can be abused to determine account existence. • https://github.com/ezsystems/ezpublish-kernel/commit/b496f073c3f03707d3531a6941dc098b84e3cbed • CWE-203: Observable Discrepancy •
CVSS: 8.3EPSS: 0%CPEs: 5EXPL: 0CVE-2022-48365
https://notcve.org/view.php?id=CVE-2022-48365
12 Mar 2023 — An issue was discovered in eZ Platform Ibexa Kernel before 1.3.26. The Company admin role gives excessive privileges. • https://developers.ibexa.co/security-advisories/ibexa-sa-2022-009-critical-vulnerabilities-in-graphql-role-assignment-ct-editing-and-drafts-tooltips • CWE-269: Improper Privilege Management •
CVSS: 3.7EPSS: 0%CPEs: 15EXPL: 0CVE-2022-48366
https://notcve.org/view.php?id=CVE-2022-48366
12 Mar 2023 — An issue was discovered in eZ Platform Ibexa Kernel before 1.3.19. It allows determining account existence via a timing attack. • https://developers.ibexa.co/security-advisories/ibexa-sa-2022-006-vulnerabilities-in-page-builder-login-and-commerce • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 0%CPEs: 11EXPL: 0CVE-2022-48367
https://notcve.org/view.php?id=CVE-2022-48367
12 Mar 2023 — An issue was discovered in eZ Publish Ibexa Kernel before 7.5.28. Access control based on object state is mishandled. • https://developers.ibexa.co/security-advisories/ibexa-sa-2022-004-ineffective-object-state-limitation-and-unauthenticated-fastly-purge • CWE-862: Missing Authorization •
CVSS: 7.5EPSS: 7%CPEs: 3EXPL: 1CVE-2022-41876 – ezplatform-graphql GraphQL queries can expose password hashes
https://notcve.org/view.php?id=CVE-2022-41876
10 Nov 2022 — ezplatform-graphql is a GraphQL server implementation for Ibexa DXP and Ibexa Open Source. Versions prior to 2.3.12 and 1.0.13 are subject to Insecure Storage of Sensitive Information. Unauthenticated GraphQL queries for user accounts can expose password hashes of users that have created or modified content, typically administrators and editors. This issue has been patched in versions 2.3.12, and 1.0.13 on the 1.X branch. Users unable to upgrade can remove the "passwordHash" entry from "src/bundle/Resources... • https://github.com/Skileau/CVE-2022-41876 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-922: Insecure Storage of Sensitive Information •