CVE-2011-4340 : Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.2.3 and po

Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author privileges to inject arbitrary web script or HTML via (1) the profile parameter to extensions/profiledevkit/content/content.profile.php, as demonstrated via requests to (a) the default URI, (b) about/, or (c) drafts/; or (2) the filter parameter in symphony/lib/core/class.symphony.php, as demonstrated via requests to (d) symphony/publish/comments or (e) symphony/publish/images. NOTE: some of these details are obtained from third party information.

Published 2012-02-12 22:55:01

Updated 2025-04-11 00:51:22

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Products affected by CVE-2011-4340

Symphony-cms » Symphony Cms » Version: 2.2.3
cpe:2.3:a:symphony-cms:symphony_cms:2.2.3:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2011-4340

EPSS FAQ

1.71%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 81 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-4340

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.5	LOW	AV:N/AC:M/Au:S/C:N/I:P/A:N	6.8	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2011-4340

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-4340

http://packetstormsecurity.org/files/view/106493/symphonycms-sqlxss.txt

Symphony CMS 2.2.3 Cross Site Scripting / SQL Injection ≈ Packet Storm

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/71106

Symphony CMS profile and filter parameters cross-site scripting CVE-2011-4340 Vulnerability Report
http://www.mavitunasecurity.com/xss-and-sql-injection-vulnerabilities-in-symphony-cms/

Netsparker Finds Multiple Critical Vulnerabilities in Symphony CMS | Netsparker

CVEs referencing this url
http://seclists.org/bugtraq/2011/Nov/8

Bugtraq: XSS and SQL Injection Vulnerabilities on Symphony CMS 2.2.3

CVEs referencing this url
http://www.osvdb.org/76883

404 Not Found
http://www.openwall.com/lists/oss-security/2011/11/22/9

oss-security - Re: CVE-request: Symphony CMS Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (NS-11-008)

CVEs referencing this url
http://secunia.com/advisories/46663

Sign in
Vendor Advisory

CVEs referencing this url
http://www.osvdb.org/76882

404 Not Found
http://symphony-cms.com/download/releases/version/2.2.4/

Patch

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2011-4340

Products affected by CVE-2011-4340

Exploit prediction scoring system (EPSS) score for CVE-2011-4340

CVSS scores for CVE-2011-4340

CWE ids for CVE-2011-4340

References for CVE-2011-4340