6.1

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-47817

GHSA ID

GHSA-c6cw-g7fc-4gwc

EPSS Score

0.06612%

CWE

CWE-79

Published

10/7/2024

Updated

10/8/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-47817

CVE-2024-47817: Lara-zeus Dynamic Dashboard and Artemis do not validate paragraph widget values which can be used for XSS

Summary

If values passed to a paragraph widget are not valid and contain a specific set of characters, applications are vulnerable to XSS attack against a user who opens a page on which a paragraph widget is rendered.

Versions of dynamic dashboard from v3.0.0 through v3.0.2 are affected.

Please upgrade to dynamic dashboard v3.0.2.

PoC

PoC will be published in a few weeks, once developers have had a chance to upgrade their apps.

Response

This vulnerability (in paragraph widget only) was reported by Raghav Sharma, who reported the issue and patched the issue during the morning of 05/10/2024. Thank you Raghav Sharma.

The review process concluded the same day at night, which revealed the issue was also present in paragraph widget. This was fixed the same day and dynamic dashboard v3.0.2 followed.

Note:

if you're published the view (blade files), you have to republish them or check the changes on release to update the affected file.

(GitHub Advisory)

6.1

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-47817

GHSA ID

GHSA-c6cw-g7fc-4gwc

EPSS Score

0.06612%

CWE

CWE-79

Published

10/7/2024

Updated

10/8/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
lara-zeus/dynamic-dashboard	composer	>= 3.0.0, <= 3.0.1	3.0.2
lara-zeus/artemis	composer	>= 1.0.0, <= 1.0.6	1.0.7

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from unsanitized output in paragraph widget templates. Analysis of the patches shows:

The fix added strip_tags() sanitization before markdown processing
The original vulnerable code used {!! $data['content'] !!} directly
Multiple theme implementations (zeus, breeze, daisy) were patched similarly
The {!! !!} syntax in Laravel Blade prevents automatic HTML escaping
CWE-79 classification confirms this is a classic XSS scenario through unvalidated user input in templates

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

# Summ*ry I* v*lu*s p*ss** to * p*r**r*p* wi***t *r* not v*li* *n* *ont*in * sp**i*i* s*t o* ***r**t*rs, *ppli**tions *r* vuln*r**l* to XSS *tt**k ***inst * us*r w*o op*ns * p*** on w*i** * p*r**r*p* wi***t is r*n**r**. V*rsions o* *yn*mi* **s**o*r*

Reasoning

T** vuln*r**ility st*ms *rom uns*nitiz** output in p*r**r*p* wi***t t*mpl*t*s. *n*lysis o* t** p*t***s s*ows: *. T** *ix ***** strip_t**s() s*nitiz*tion ***or* m*rk*own pro**ssin* *. T** ori*in*l vuln*r**l* *o** us** {!! $**t*['*ont*nt'] !!} *ir**tly

6.1

Basic Information

Concerned about an active attack path?

CVE-2024-47817: Lara-zeus Dynamic Dashboard and Artemis do not validate paragraph widget values which can be used for XSS

Summary

PoC

Response

Note:

6.1

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI