Wachterjohannes

**Name of the Vulnerable Software and Affected Versions** Sulu versions prior to 2.6.5 Sulu versions prior to 2.5.21 **Description** This issue allows an attacker to inject arbitrary HTML/JavaScript code through the media download URL in Sulu CMS, affecting the SuluMediaBundle component. It is a Reflected Cross-Site Scripting (XSS) issue, which could potentially allow attackers to steal sensitive information, manipulate the website's content, or perform actions on behalf of the victim. **Recommendations** For versions prior to 2.6.5, update to version 2.6.5 or later. For versions prior to 2.5.21, update to version 2.5.21 or later. As a temporary workaround, consider implementing additional input validation and output encoding for the `slug` parameter in the MediaStreamController's downloadAction method. Alternatively, configuring a Web Application Firewall (WAF) to filter potentially malicious input could serve as a temporary mitigation.

**Name of the Vulnerable Software and Affected Versions** Sulu versions 2.0.0 through 2.6.4 **Description** Sulu, a PHP content management system, is vulnerable to XSS attacks. A low-privileged user with access to the "Media" section can upload an SVG file containing a malicious payload. Once uploaded and accessed, the malicious JavaScript will be executed on the victims' browsers, including those of other users and admins. **Recommendations** For Sulu versions 2.0.0 through 2.6.4, upgrade to version 2.6.5 to fix the issue. As a temporary workaround, consider restricting access to the "Media" section to prevent low-privileged users from uploading malicious SVG files. Avoid accessing SVG files uploaded by low-privileged users until the issue is resolved.