PT-2017-7494 · Mustache+1 · Mustache+1

Published

2017-01-23

Updated

2018-10-09

CVE-2015-8862

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions mustache versions prior to 2.2.1

Description The issue allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging a template with an attribute that is not quoted. This can occur when attributes in mustache templates are not properly encapsulated. For example, a template like <a href={{foo}}/> with input { 'foo' : 'test.com onload=alert(1)'} can result in a rendered output of <a href=test.com onload=alert(1)/>, facilitating the XSS attack.

Recommendations Update to version 2.2.1 or later. Alternatively, ensure that all attributes in mustache templates are encapsulated with quotes.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2015-8862

GHSA-3233-RGX3-C2WH

GHSA-W3W8-37JV-2C58

Affected Products

Debian

Mustache

PT-2017-7494 · Mustache+1 · Mustache+1

CVE-2015-8862

Weakness Enumeration

Related Identifiers

Affected Products

References · 22