Unescaped HTML Reflected in AJAX Handler Name
CVE-2024-25637

3.1LOW

Key Information:

Vendor: Octobercms
Status: October
Vendor: CVE Published:; 26 June 2024

What is CVE-2024-25637?

October is a self-hosted CMS platform based on the Laravel PHP Framework. The X-October-Request-Handler Header does not sanitize the AJAX handler name and allows unescaped HTML to be reflected back. There is no impact since this vulnerability cannot be exploited through normal browser interactions. This unescaped value is only detectable when using a proxy interception tool. This issue has been patched in version 3.5.15.

Affected Version(s)

october >= 3.2, < 3.5.15

References

https://github.com/octobercms/october/security/advisories...

x_refsource_CONFIRM

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2024
Vulnerability Reserved
Feb 8, 2024

CVE-2024-25637 Data

JSON

Octobercms

What is CVE-2024-25637?

Affected Version(s)

References

CVSS V3.1

Timeline