Miggo Logo
Miggo Vulnerability Database
CVE-2006-4067

CVE-2006-4067: Cross-site scripting (XSS) vulnerability in CakePHP

6.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2006-4067
GHSA ID
GHSA-vc29-mvwv-wpcq
EPSS Score
0.60585%
CWE
CWE-79
Published
5/1/2022
Updated
2/2/2023
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
cakephp/cakephpcomposer>= 1.0.1.2708, <= 1.1.6.32641.1.7.3363

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability manifests in 404 error page generation where user-supplied URL input is reflected without proper sanitization. The ErrorHandler class in error.php is responsible for error rendering in CakePHP. The _outputMessage method would be the logical location where raw URL input is incorporated into HTML output. Since the advisory specifically mentions error.php as the vulnerable component and describes reflected XSS via URL input, this function's failure to apply output encoding to user-controlled input before rendering constitutes the vulnerability.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*ross-sit* s*riptin* (XSS) vuln*r**ility in **k*/li*s/*rror.p*p in **k*P*P ***or* *.*.*.**** *llows r*mot* *tt**k*rs to inj**t *r*itr*ry w** s*ript or *TML vi* t** URL, w*i** is r**l**t** ***k in * *** (\"Not *oun*\") *rror p***. NOT*: som* o* t**s*

Reasoning

T** vuln*r**ility m*ni**sts in *** *rror p*** **n*r*tion w**r* us*r-suppli** URL input is r**l**t** wit*out prop*r s*nitiz*tion. T** `*rror**n*l*r` *l*ss in `*rror.p*p` is r*sponsi*l* *or *rror r*n**rin* in **k*P*P. T** `_outputM*ss***` m*t*o* woul*