CVE-2024-22418

Published: Jan 18, 2024Modified: Nov 21, 2024

5.4

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.3 / Impact: 2.7

Source: NVD

Description

Group-Office is an enterprise CRM and groupware tool. Affected versions are subject to a vulnerability which is present in the file upload mechanism of Group Office. It allows an attacker to execute arbitrary JavaScript code by embedding it within a file's name. For instance, using a filename such as “><img src=x onerror=prompt('XSS')>.jpg” triggers the vulnerability. When this file is uploaded, the JavaScript code within the filename is executed. This issue has been addressed in version 6.8.29. All users are advised to upgrade. There are no known workarounds for this vulnerability.

Affected (1)

Products: Group Office: Group Office

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Group Office Group Office	Before 6.8.29

Related CWEs

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References (4)

https://github.com/Intermesh/groupoffice/commit/2a52a5d42d080db6738d70eba30294bcd94ebd09

Source: security-advisories@github.com

Patch

https://github.com/Intermesh/groupoffice/security/advisories/GHSA-p7w9-h6c3-wqpp

Source: security-advisories@github.com

ExploitVendor Advisory

https://github.com/Intermesh/groupoffice/commit/2a52a5d42d080db6738d70eba30294bcd94ebd09

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://github.com/Intermesh/groupoffice/security/advisories/GHSA-p7w9-h6c3-wqpp

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

Timeline

No history available yet.