Arnaud Roques

4 exploits Active since Apr 2022
CVE-2022-1231 WRITEUP MEDIUM WRITEUP
PlantUML < 1.2022.4 - Stored Cross-Site Scripting via Embedded SVG in Diagram
XSS via Embedded SVG in SVG Diagram Format in GitHub repository plantuml/plantuml prior to 1.2022.4. Stored XSS in the context of the diagram embedder. Depending on the actual context, this ranges from stealing secrets to account hijacking or even to code execution for example in desktop applications. Web based applications are the ones most affected. Since the SVG format allows clickable links in diagrams, it is commonly used in plugins for web based projects (like the Confluence plugin, etc. see https://plantuml.com/de/running).
CVSS 6.1
CVE-2023-3431 WRITEUP MEDIUM WRITEUP
PlantUML < 1.2023.9 - Improper Access Control
Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.
CVSS 5.3
CVE-2023-3432 WRITEUP CRITICAL WRITEUP
PlantUML < 1.2023.9 - Server-Side Request Forgery
Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.
CVSS 10.0
CVE-2026-0858 WRITEUP MEDIUM WRITEUP
PlantUML < 1.2026.0 - Stored Cross-Site Scripting via GraphViz Diagram Interactive Attributes
Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to arbitrary script execution in the context of applications that render the SVG.
CVSS 6.1