CVE-2015-8766 : Multiple cross-site scripting (XSS) vulnerabilities in content/content.systempre

Multiple cross-site scripting (XSS) vulnerabilities in content/content.systempreferences.php in Symphony CMS before 2.6.4 allow remote attackers to inject arbitrary web script or HTML via the (1) email_sendmail[from_name], (2) email_sendmail[from_address], (3) email_smtp[from_name], (4) email_smtp[from_address], (5) email_smtp[host], (6) email_smtp[port], (7) jit_image_manipulation[trusted_external_sites], or (8) maintenance_mode[ip_whitelist] parameters to system/preferences.

Published 2016-01-08 21:59:06

Updated 2020-10-29 22:15:13

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Products affected by CVE-2015-8766

Getsymphony » Symphony
Versions up to, including, (<=) 2.6.3
cpe:2.3:a:getsymphony:symphony:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2015-8766

EPSS FAQ

0.24%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 44 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-8766

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
6.1	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	2.8	2.7	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2015-8766

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-8766

https://cybersecurityworks.com/zerodays/cve-2015-8766-getsymphoney.html

CVE-2015-8766 - Reflected Cross-Site Scripting (XSS) in Symphony CMS
http://seclists.org/fulldisclosure/2015/Dec/60

Full Disclosure: Symphony 2.6.3 – Multiple Persistent Cross-Site Scripting Vulnerabilities
Exploit
http://www.getsymphony.com/download/releases/version/2.6.4/

Release Details – Release History – Download – Symphony.
Patch;Vendor Advisory
https://github.com/symphonycms/symphony-2/commit/651e150091c61fb60ad1dff2bc2166185a83d9d6

Sanitize the POST for the system/preferences/ · symphonycms/symphony-2@651e150 · GitHub

Jump to

Vulnerability Details : CVE-2015-8766

Products affected by CVE-2015-8766

Exploit prediction scoring system (EPSS) score for CVE-2015-8766

CVSS scores for CVE-2015-8766

CWE ids for CVE-2015-8766

References for CVE-2015-8766