CVE-2021-36793 – lms/routes

Package

Manager: composer
Name: lms/routes
Vulnerable Version: >=0 <2.1.1

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N/E:F/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:A/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00253 pctl0.48455

Details

CSRF token exposure in TYPO3 extension When using the CsrfTokenViewHelper the extension discloses the user's session identifier to HTML output without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - like for instance Cross Site Scripting in the frontend output.

Metadata

Created: 2021-09-02T17:16:56Z
Modified: 2022-07-13T18:55:15Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-vpw5-grxx-v396/GHSA-vpw5-grxx-v396.json
CWE IDs: ["CWE-668"]
Alternative ID: GHSA-vpw5-grxx-v396
Finding: F017
Auto approve: 1