Miggo Logo
Miggo Vulnerability Database
CVE-2022-37059

CVE-2022-37059: Subrion CMS 4.2.1 vulnerable to cross-site scripting in admin panel

4.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-37059
GHSA ID
GHSA-rh4r-9689-6xw4
EPSS Score
0.26044%
CWE
CWE-79
Published
8/29/2022
Updated
1/27/2023
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
intelliants/subrioncomposer<= 4.2.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The XSS occurs in the admin login field, indicating input from authentication forms is not properly sanitized before output. CMS admin controllers typically handle form processing and template rendering. The AdminController::login would process login attempts and potentially reflect input in error messages. The iaView::display function (common in MVC frameworks) would be responsible for final HTML generation - if it lacks contextual escaping for user-controlled data like login fields, XSS would occur. Confidence is high for the controller method due to the attack vector description, and medium for the view layer component as it's a common pattern though not explicitly confirmed.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*ross Sit* S*riptin* (XSS) in t** **min P*n*l o* Su*rion *MS *.*.* *llows *tt**k*r to inj**t *r*itr*ry *o** vi* t** Lo*in *i*l*.

Reasoning

T** XSS o**urs in t** **min lo*in *i*l*, in*i**tin* input *rom *ut**nti**tion *orms is not prop*rly s*nitiz** ***or* output. *MS **min *ontroll*rs typi**lly **n*l* *orm pro**ssin* *n* t*mpl*t* r*n**rin*. T** **min*ontroll*r::lo*in woul* pro**ss lo*in