CVE-2021-30140 Information

Description

LiquidFiles 3.4.15 has stored XSS through the \send email\ functionality when sending a file via email to an administrator. When a file has no extension and contains malicious HTML / JavaScript content (such as SVG with HTML content) the payload is executed upon a click. This is fixed in 3.5.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Reference

https://gist.github.com/rodnt/9f7d368fac38cafa7334598ec94fb167 https://www.tempest.com.br https://liquidfiles.com/support.html http://seclists.org/fulldisclosure/2022/May/41 http://packetstormsecurity.com/files/167228/LiquidFiles-3.4.15-Cross-Site-Scripting.html

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

REQUIRED

Confidentiality Impact

CHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

NONE

Base Severity

5.4