6.1

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-3313

GHSA ID

GHSA-hprr-4vfq-fcxw

EPSS Score

0.62478%

CWE

CWE-79

Published

5/24/2022

Updated

10/15/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2021-3313

CVE-2021-3313: Plone XSS in User Fullname Property and File Upload

Plone CMS until version 5.2.4 has a stored Cross-Site Scripting (XSS) vulnerability in the user fullname property and the file upload functionality. The user's input data is not properly encoded when being echoed back to the user. This data can be interpreted as executable code by the browser and allows an attacker to execute JavaScript in the context of the victim's browser if the victim opens a vulnerable page containing an XSS payload.

(GitHub Advisory)

6.1

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-3313

GHSA ID

GHSA-hprr-4vfq-fcxw

EPSS Score

0.62478%

CWE

CWE-79

Published

5/24/2022

Updated

10/15/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
plone	pip	< 5.2.4	5.2.4

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability manifests in two key areas: 1) User profile handling - the fullname field update mechanism lacks proper output encoding when rendering user-controlled data in templates like ownership views. 2) File upload processing - SVG/HTML files with embedded scripts are stored and served with executable MIME types (image/svg+xml) without Content-Disposition headers or sanitization. The combination of improper input handling in user properties and insufficient file content validation creates XSS vectors. These conclusions align with the attack examples in Compass Security's advisory and the hotfix descriptions that specifically mention these components.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Plon* *MS until v*rsion *.*.* **s * stor** *ross-Sit* S*riptin* (XSS) vuln*r**ility in t** us*r *ulln*m* prop*rty *n* t** *il* uplo** *un*tion*lity. T** us*r's input **t* is not prop*rly *n*o*** w**n **in* ***o** ***k to t** us*r. T*is **t* **n ** in

Reasoning

T** vuln*r**ility m*ni**sts in two k*y *r**s: *) `Us*r` pro*il* **n*lin* - t** *ulln*m* *i*l* up**t* m****nism l**ks prop*r output *n*o*in* w**n r*n**rin* us*r-*ontroll** **t* in t*mpl*t*s lik* own*rs*ip vi*ws. *) *il* uplo** pro**ssin* - SV*/*TML *i

6.1

Basic Information

Concerned about an active attack path?

CVE-2021-3313: Plone XSS in User Fullname Property and File Upload

6.1

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI