Description

Spring Framework (versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions) allow web applications to change the HTTP request method to any HTTP method (including TRACE) using the HiddenHttpMethodFilter in Spring MVC. If an application has a pre-existing XSS vulnerability, a malicious user (or attacker) can use this filter to escalate to an XST (Cross Site Tracing) attack.

Remediation

References

CVE-2018-11039

Related Vulnerabilities

Oracle Database Server CVE-2008-0346 Vulnerability (CVE-2008-0346)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2934)

SugarCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-35808)

WordPress Plugin WordPress Landing Pages Unspecified Vulnerability (1.8.1)

Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.8.12)

Severity

Medium

Classification

CVE-2018-11039 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities