CVE-2017-20057: Cross site scripting in Elefant CMS
6.1
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.45577%
CWE
Published
6/21/2022
Updated
1/27/2023
KEV Status
No
Technology
PHP
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
elefant/cms | composer | < 1.3.13 | 1.3.13 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from unsanitized username input handling and unescaped output in admin interfaces. Key evidence includes: 1) The PoC shows XSS triggers in user edit pages (/user/edit
) and version comparisons (/admin/versions
), implicating these handlers. 2) Persistent XSS requires both storage and unsafe rendering - User::save
likely stores raw input while template rendering functions fail to escape it. 3) The CMS's admin interface structure suggests these are core user management components. While exact code isn't available, the attack pattern and Elefant's MVC architecture strongly indicate these functions as vulnerable points.