XSS vulnerability on password reset page
CVE-2021-27909

6.3MEDIUM

Key Information:

Vendor: Mautic
Status: Mautic
Vendor: CVE Published:; 30 August 2021

Summary

For Mautic versions prior to 3.3.4/4.0.0, there is an XSS vulnerability on Mautic's password reset page where a vulnerable parameter, "bundle," in the URL could allow an attacker to execute Javascript code. The attacker would be required to convince or trick the target into clicking a password reset URL with the vulnerable parameter utilized.

Affected Version(s)

Mautic < 3.3.4

Mautic < 4.0.0

References

https://github.com/mautic/mautic/security/advisories/GHSA...

x_refsource_MISC

EPSS Score

11% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 30, 2021
Vulnerability Reserved
Mar 2, 2021

Credit

Reported by https://github.com/ZhenwarX, Fixed by Mohit Aghera https://github.com/mohit-rocks