Vulnerability Details : CVE-2021-43960
Lorensbergs Connect2 3.13.7647.20190 is affected by an XSS vulnerability. Exploitation requires administrator privileges and is performed through the Wizard editor of the application. The attack requires an administrator to go into the Wizard editor and enter an XSS payload within the Page title, Page Instructions, Text before, Text after, or Text on side box. Once this has been done, the administrator must click save and finally wait until any user of the application performs a booking for rental items in the booking area of the application, where the XSS triggers. NOTE: another perspective is that the administrator may require JavaScript to customize any aspect of the page rendering. There is no effective way for the product to defend users in the face of a malicious administrator
Vulnerability category: Cross site scripting (XSS)
Products affected by CVE-2021-43960
- cpe:2.3:a:lorensbergs:connect2:3.13.7647.20190:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-43960
0.08%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 34 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-43960
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.5
|
LOW | AV:N/AC:M/Au:S/C:N/I:P/A:N |
6.8
|
2.9
|
NIST | |
4.8
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
1.7
|
2.7
|
NIST |
CWE ids for CVE-2021-43960
-
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-43960
-
https://www.lorensbergs.co.uk/products/connect2-academic/
Connect2 online booking system | Academic resources - LorensbergsProduct;Vendor Advisory
-
https://www.surecloud.com/resources/blog/lorensbergs-connect2-cross-site-scripting
Lorensbergs Connect2 Cross-Site-Scripting - SureCloudExploit;Third Party Advisory
Jump to