Dependency Graph
View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0006004 | SOGo | Web Preferences | public | 2024-08-19 23:49 | 2024-10-08 12:27 |
Reporter | julian123 | Assigned To | qhivert | ||
Priority | normal | Severity | minor | Reproducibility | always |
Status | resolved | Resolution | fixed | ||
Platform | [Server] Linux | OS | Ubuntu | OS Version | 16.04 LTS |
Product Version | 5.10.0 | ||||
Fixed in Version | 5.11.1 | ||||
Summary | 0006004: Stored-XSS in Contacts Category Fields | ||||
Description | A cross-site scripting payload can be stored in the contacts category fields, leading to execution when the user navigates to their inbox. | ||||
Steps To Reproduce |
| ||||
Tags | No tags attached. | ||||
related to | 0006009 | closed | qhivert | Stored-XSS in Vacation Auto-Reply |
related to | 0006008 | closed | qhivert | Stored-XSS in Mail Filters Field |
related to | 0006007 | closed | qhivert | Stored-XSS in Mail Labels Field |
related to | 0006006 | closed | qhivert | Calendar Categories Stored-XSS |
related to | 0006010 | closed | qhivert | Stored-XSS in Reply to Email |
Hello, |
|
Thank you qhivert! Please let me know if you have any questions or would like screenshots. |
|
Just to be sure, in all your cases, it's the user itself or someone with the user access that "hacks" itself? |
|
Correct, it's a self-XSS. I understand that lowers the severity considerably as is reflected in my rating of the issue. However, it's possible a user could be lured into performing some of these actions if they are socially engineered or if their account is compromised. There may be other avenues of exploiting these which may become available in the future which I either did not discover or are not yet possible. I'd consider them to be low-severity vulnerabilities under the current conditions though, I could certainly score them each for you if that may help. |
|
What OS do you use, I've made a fix but I don't want to push it in the main branch yet. But I can build a package for you to test it. |
|
I'm running it in docker through Mailcow, not sure how to best approach testing it. What are your thoughts? |
|
Hello, |
|
Thank you Qhivert, I'll test this ASAP. I'd like to register CVEs for these findings if that's alright! |
|
Date Modified | Username | Field | Change |
---|---|---|---|
2024-08-19 23:49 | julian123 | New Issue | |
2024-08-20 09:41 | qhivert | Assigned To | => qhivert |
2024-08-20 09:41 | qhivert | Status | new => assigned |
2024-08-20 09:42 | qhivert | Note Added: 0017812 | |
2024-08-20 12:33 | julian123 | Note Added: 0017813 | |
2024-08-20 13:23 | qhivert | Note Added: 0017816 | |
2024-08-20 13:23 | qhivert | Status | assigned => feedback |
2024-08-20 13:32 | julian123 | Note Added: 0017817 | |
2024-08-20 13:32 | julian123 | Status | feedback => assigned |
2024-08-20 14:08 | qhivert | Relationship added | related to 0006010 |
2024-08-20 14:08 | qhivert | Relationship added | related to 0006009 |
2024-08-20 14:08 | qhivert | Relationship added | related to 0006008 |
2024-08-20 14:08 | qhivert | Relationship added | related to 0006007 |
2024-08-20 14:08 | qhivert | Relationship added | related to 0006006 |
2024-08-20 14:23 | qhivert | Note Added: 0017820 | |
2024-08-20 14:23 | qhivert | Status | assigned => feedback |
2024-08-20 14:32 | julian123 | Note Added: 0017822 | |
2024-08-20 14:32 | julian123 | Status | feedback => assigned |
2024-09-12 06:58 | qhivert | Note Added: 0017873 | |
2024-09-12 06:58 | qhivert | Status | assigned => feedback |
2024-09-16 10:21 | julian123 | Note Added: 0017886 | |
2024-09-16 10:21 | julian123 | Status | feedback => assigned |
2024-10-08 12:27 | qhivert | Status | assigned => resolved |
2024-10-08 12:27 | qhivert | Resolution | open => fixed |
2024-10-08 12:27 | qhivert | Fixed in Version | => 5.11.1 |