2.4

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2023-7035

GHSA ID

GHSA-7j9h-ch38-474r

EPSS Score

0.41331%

CWE

CWE-79

Published

12/21/2023

Updated

8/26/2024

KEV Status

Technology

PHP

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2023-7035

CVE-2023-7035: Withdrawn Advisory: Stored Cross-site scripting affecting automad/automad

Withdrawn Advisory

This advisory has been withdrawn because only the main admin with the highest level of privilege can provide input, and there are no users other than the admin from whom data could be stolen. This link is maintained to preserve external references.

Original Description

automad up to 1.10.9 is vulnerable to stored cross-site scripting in the sitename argument because the SharedController class that handles form data and saving shared information does not properly sanitize the user input on the client side when rendering the data. The attack may be launched remotely and an exploit has been disclosed publicly.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2023-7035

CVE-2023-7035:

2.4

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2023-7035

GHSA ID

GHSA-7j9h-ch38-474r

EPSS Score

0.41331%

CWE

CWE-79

Published

12/21/2023

Updated

8/26/2024

KEV Status

Technology

PHP

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
automad/automad	composer	<= 1.10.9

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The core vulnerability stems from the SharedController's save method not sanitizing user input before persistence. While the advisory was withdrawn due to admin-only access, the technical analysis shows: 1) The save method directly writes POST data to AM_FILE_SHARED_DATA without sanitization 2) Multiple template files (post.php, navbar.php etc.) directly output this stored data without escaping 3) The vendor's security.md confirms admins have template modification privileges, making stored XSS relevant even in admin context. The save method is the root cause as it allows persistent storage of raw user input that gets executed during rendering.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

2.4

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2023-7035: Withdrawn Advisory: Stored Cross-site scripting affecting automad/automad

Withdrawn Advisory

Original Description

CVE-2023-7035:

2.4

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Basic Information

Basic Information

2.4

2.4

CVE-2023-7035: Withdrawn Advisory: Stored Cross-site scripting affecting automad/automad

Withdrawn Advisory

Original Description

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI