CVE-2024-23173 - OpenCVE

An issue was discovered in the Cargo extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:Drilldown page allows XSS via artist, album, and position parameters because of applied filter values in drilldown/CargoAppliedFilter.php.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Mediawiki	Mediawiki

Configuration 1 [-]

OR	cpe:2.3:a:mediawiki:mediawiki::::::::
	cpe:2.3:a:mediawiki:mediawiki::::::::
	cpe:2.3:a:mediawiki:mediawiki::::::::

References

Link	Resource
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Cargo/+/965214	Patch
https://phabricator.wikimedia.org/T348687	Exploit Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2024-01-12T00:00:00

Updated: 2024-01-12T04:39:53.663943

Reserved: 2024-01-12T00:00:00

Link: CVE-2024-23173

JSON object: View

NVD Information

Status : Analyzed

Published: 2024-01-12T05:15:10.237

Modified: 2024-01-18T20:23:22.817

Link: CVE-2024-23173

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*", "matchCriteriaId": "518A7A3D-741F-405B-8220-982093DF53E1", "versionEndExcluding": "1.35.14", "vulnerable": true}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*", "matchCriteriaId": "9FCCA5D1-C639-4407-917F-95A949E639A8", "versionEndExcluding": "1.39.6", "versionStartIncluding": "1.36.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*", "matchCriteriaId": "3EF19DE5-1D79-4001-ABA1-D648AD6610D6", "versionEndExcluding": "1.40.2", "versionStartIncluding": "1.40.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in the Cargo extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:Drilldown page allows XSS via artist, album, and position parameters because of applied filter values in drilldown/CargoAppliedFilter.php."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en la extensi\u00f3n Cargo en MediaWiki antes de 1.35.14, 1.36.x hasta 1.39.x antes de 1.39.6 y 1.40.x antes de 1.40.2. La p\u00e1gina Special:Drilldown permite XSS a trav\u00e9s de los par\u00e1metros artist, album y position debido a los valores de filtro aplicados en drilldown/CargoAppliedFilter.php."}], "id": "CVE-2024-23173", "lastModified": "2024-01-18T20:23:22.817", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-01-12T05:15:10.237", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Cargo/+/965214"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "https://phabricator.wikimedia.org/T348687"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}