Attacker Value
Moderate
(1 user assessed)
Exploitability
Very High
(1 user assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
1

CVE-2021-38138

Last updated August 06, 2021
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Execution
Techniques
Validation
Validated
Validated
Validated
Validated

Description

OneNav beta 0.9.12 allows XSS via the Add Link feature. PWNED by using remote execution script, automated for this vulnerability. NOTE: the vendor’s position is that there intentionally is not any XSS protection at present, because the attack risk is largely limited to a compromised account; however, XSS protection is planned for a future release.

Proof:

https://streamable.com/ubtzio

Add Assessment

2
Ratings
  • Attacker Value
    Medium
  • Exploitability
    Very High
Vulnerable in default configurationAuthenticatedVulnerable in uncommon configuration
Technical Analysis

OneNav beta 0.9.12 allows XSS via the Add Link feature. PWNED by using remote execution script, automated for this vulnerability. NOTE: the vendor’s position is that there intentionally is not any XSS protection at present, because the attack risk is largely limited to a compromised account; however, XSS protection is planned for a future release.

More:

https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-38138

Proof:

https://streamable.com/ubtzio

Log in to Add Reply

General Information

Offensive Application
exploit
Utility Class
infoleak
Ports
Unknown
OS
Unknown
Vulnerable Versions
Unknown
Prerequisites
Unknown
Discovered By
nu11secur1ty
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
nu11secur1ty

References

Additional Info

Authenticated
Unknown
Exploitable
Always
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis