CVE-2018-1000822

CRITICAL

codelibs fess <faa265b - XSS

Title source: llm

Description

codelibs fess version before commit faa265b contains a XML External Entity (XXE) vulnerability in GSA XML file parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This attack appear to be exploitable via specially crafted GSA XML files. This vulnerability appears to have been fixed in after commit faa265b.

Exploits (2)

nomisec WORKING POC

by dawetmaster · poc

https://github.com/dawetmaster/CVE-2018-1000822-fess-vulnerable

View Code ZIP pw:eip

nomisec WORKING POC

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2018-1000822-fess-vulnerable

View Code ZIP pw:eip

References (2)

[Third Party Advisory] https://0dd.zone/2018/10/27/fess-XXE/

[Issue Tracking, Patch, Third Party Advisory] https://github.com/codelibs/fess/issues/1851

Scores

CVSS v3 10.0

EPSS 0.0024

EPSS Percentile 47.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-611

Status published

Products (2)

codelibs/fess < 12.2.3

org.codelibs.fess/fess 0 - 12.3.2Maven

Published Dec 20, 2018

Tracked Since Feb 18, 2026