CVE-2017-18049

MEDIUM

Silverstripe < 3.5.5 - Injection

Title source: rule

Description

In the CSV export feature of SilverStripe before 3.5.6, 3.6.x before 3.6.3, and 4.x before 4.0.1, it's possible for the output to contain macros and scripts, which may be executed if imported without sanitization into common software (including Microsoft Excel). For example, the CSV data may contain untrusted user input from the "First Name" field of a user's /myprofile page.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ishaq Mohammed · textwebappsphp

https://www.exploit-db.com/exploits/43396

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/43396/

[Vendor Advisory] https://www.silverstripe.org/download/security-releases/ss-2017-007

Scores

CVSS v3 5.5

EPSS 0.0021

EPSS Percentile 43.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Details

CWE

CWE-74

Status published

Products (3)

silverstripe/framework 0 - 3.5.6Packagist

silverstripe/silverstripe 4.0.0

silverstripe/silverstripe < 3.5.5

Published Jan 23, 2018

Tracked Since Feb 18, 2026