Stored cross-site scripting vulnerability in Exment ((PHP8) exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, (PHP7) exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier) allows a remote attacker to inject arbitrary script code into the application’s response.
CVE-2018-15865 The Exent v5.0.2 and earlier
and earlier and allows a remote attacker to inject arbitrary script code into the application’s response, as demonstrated by an attack that injects JavaScript into the timestamp to exfiltrate cookie data.
CVE-2018-15866 The Exent v5.0.2 and earlier
and earlier allows a remote attacker to inject arbitrary script code into the application’s response, as demonstrated by an attack that injects JavaScript into the timestamp to exfiltrate cookie data.
Stored cross-site request forgery (CSRF) vulnerability in Exent
CVE-2018-15867 The Exent v5.0.2 and earlier
and earlier allows a remote attacker to hijack the session of an authenticated user, by abusing the ability to use GET or POST requests with image parameters as demonstrated by an attack that sends a malicious image parameter that steals cookie data.
CVE-2019-17611 The Exent v5.0.2 and earlier
Stored XSS vulnerability in Exent (PHP8) exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, (PHP7) exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier
Limitations and Recommendations
In the cases of these vulnerabilities, no credit card or personal information was affected, and no malicious code was executed on the server.
As a result, we recommend that users upgrade to Exent v5.0.2 and earlier or less vulnerable Laravel-Admin v3.0.0 and earlier versions.
Timeline
Published on: 08/24/2022 09:15:00 UTC
Last modified on: 08/27/2022 03:54:00 UTC