Strapi is an open-source headless content management system. Prior to version 4.10.8, it is possible to leak private fields if one is using the `t(number)` prefix. Knex query allows users to change the default prefix. For example, if someone changes the prefix to be the same as it was before or to another table they want to query, the query changes from `password` to `t1.password`. `password` is protected by filtering protections but `t1.password` is not protected. This can lead to filtering attacks on everything related to the object again, including admin passwords and reset-tokens. Version 4.10.8 fixes this issue.
References
Link | Resource |
---|---|
https://github.com/strapi/strapi/releases/tag/v4.10.8 | Release Notes |
https://github.com/strapi/strapi/security/advisories/GHSA-9xg4-3qfm-9w8f | Exploit Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-07-25T17:24:19.864Z
Updated: 2023-07-25T17:24:19.864Z
Reserved: 2023-05-31T13:51:51.169Z
Link: CVE-2023-34235
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-25T18:15:10.800
Modified: 2023-08-02T19:02:29.150
Link: CVE-2023-34235
JSON object: View
Redhat Information
No data.
CWE