CVE-2014-3994 - Vulnerability Details - OpenCVE

Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbitrary web script or HTML via a JSON object, as demonstrated by the name field when changing a user name.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Reviewboard	Djblets Reviewboard

Configuration 1 [-]

OR	cpe:2.3:a:reviewboard:djblets::::::::
	cpe:2.3:a:reviewboard:djblets:0.7.27:::::::*
	cpe:2.3:a:reviewboard:djblets:0.7.28:::::::*
	cpe:2.3:a:reviewboard:djblets:0.8.1:::::::*
	cpe:2.3:a:reviewboard:djblets:0.8.2:::::::*
	cpe:2.3:a:reviewboard:reviewboard:-:::::::*

No data.

References

Link	Providers
http://seclists.org/oss-sec/2014/q2/494
http://seclists.org/oss-sec/2014/q2/498
http://secunia.com/advisories/58691
http://www.securityfocus.com/bid/67932
https://code.google.com/p/reviewboard/issues/detail?id=3406
https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd
https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e
https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-06-16T18:00:00

Updated: 2024-08-06T11:04:26.954Z

Reserved: 2014-06-06T00:00:00

Link: CVE-2014-3994

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-06-16T18:55:09.433

Modified: 2024-11-21T02:09:17.690

Link: CVE-2014-3994

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-06-06T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbitrary web script or HTML via a JSON object, as demonstrated by the name field when changing a user name."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2015-04-21T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20140606 Requesting CVEs issued for two XSS vulnerabilities in Djblets (a set of Django helpers)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://seclists.org/oss-sec/2014/q2/494"}, {"name": "[oss-security] 20140606 Re: Requesting CVEs issued for two XSS vulnerabilities in Djblets (a set of Django helpers)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://seclists.org/oss-sec/2014/q2/498"}, {"name": "67932", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/67932"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://code.google.com/p/reviewboard/issues/detail?id=3406"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e"}, {"name": "58691", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/58691"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-3994", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbitrary web script or HTML via a JSON object, as demonstrated by the name field when changing a user name."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20140606 Requesting CVEs issued for two XSS vulnerabilities in Djblets (a set of Django helpers)", "refsource": "MLIST", "url": "http://seclists.org/oss-sec/2014/q2/494"}, {"name": "[oss-security] 20140606 Re: Requesting CVEs issued for two XSS vulnerabilities in Djblets (a set of Django helpers)", "refsource": "MLIST", "url": "http://seclists.org/oss-sec/2014/q2/498"}, {"name": "67932", "refsource": "BID", "url": "http://www.securityfocus.com/bid/67932"}, {"name": "https://code.google.com/p/reviewboard/issues/detail?id=3406", "refsource": "CONFIRM", "url": "https://code.google.com/p/reviewboard/issues/detail?id=3406"}, {"name": "https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e", "refsource": "CONFIRM", "url": "https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e"}, {"name": "58691", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/58691"}, {"name": "https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf", "refsource": "CONFIRM", "url": "https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf"}, {"name": "https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd", "refsource": "CONFIRM", "url": "https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T11:04:26.954Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20140606 Requesting CVEs issued for two XSS vulnerabilities in Djblets (a set of Django helpers)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://seclists.org/oss-sec/2014/q2/494"}, {"name": "[oss-security] 20140606 Re: Requesting CVEs issued for two XSS vulnerabilities in Djblets (a set of Django helpers)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://seclists.org/oss-sec/2014/q2/498"}, {"name": "67932", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/67932"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://code.google.com/p/reviewboard/issues/detail?id=3406"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e"}, {"name": "58691", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/58691"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2014-3994", "datePublished": "2014-06-16T18:00:00", "dateReserved": "2014-06-06T00:00:00", "dateUpdated": "2024-08-06T11:04:26.954Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:reviewboard:djblets:*:*:*:*:*:*:*:*", "matchCriteriaId": "686B0A9E-DC65-4162-9A17-6BC638220C4C", "versionEndIncluding": "0.7.29", "vulnerable": true}, {"criteria": "cpe:2.3:a:reviewboard:djblets:0.7.27:*:*:*:*:*:*:*", "matchCriteriaId": "96E63A81-C146-4FF8-B42F-5FF3D337DFBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:reviewboard:djblets:0.7.28:*:*:*:*:*:*:*", "matchCriteriaId": "692BC2AF-0253-4907-AC90-A2ACC0A1CA8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:reviewboard:djblets:0.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "E578875D-92CD-4D36-8F28-CA1928495770", "vulnerable": true}, {"criteria": "cpe:2.3:a:reviewboard:djblets:0.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "A4477F46-9341-4DD0-B809-361AEBC3A7C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:reviewboard:reviewboard:-:*:*:*:*:*:*:*", "matchCriteriaId": "7FD5188A-E704-474D-98BE-BC74F6270FEE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbitrary web script or HTML via a JSON object, as demonstrated by the name field when changing a user name."}, {"lang": "es", "value": "Vulnerabilidad de XSS en util/templatetags/djblets_js.py en Djblets anterior a 0.7.30 y 0.8.x anterior a 0.8.3 para Django, utilizado en Review Board, permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a trav\u00e9s de un objeto JSON, tal y como fue demostrado por el campo de nombre cuando se cambia un nombre de usuario."}], "id": "CVE-2014-3994", "lastModified": "2024-11-21T02:09:17.690", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2014-06-16T18:55:09.433", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://seclists.org/oss-sec/2014/q2/494"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://seclists.org/oss-sec/2014/q2/498"}, {"source": "cve@mitre.org", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/58691"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/67932"}, {"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "https://code.google.com/p/reviewboard/issues/detail?id=3406"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Issue Tracking", "Patch"], "url": "https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://seclists.org/oss-sec/2014/q2/494"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://seclists.org/oss-sec/2014/q2/498"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://secunia.com/advisories/58691"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/67932"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "https://code.google.com/p/reviewboard/issues/detail?id=3406"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/djblets/djblets/commit/50000d0bbb983fa8c097b588d06b64df8df483bd"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Issue Tracking", "Patch"], "url": "https://github.com/djblets/djblets/commit/77a68c03cd619a0996f3f37337b8c39ca6643d6e"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Patch"], "url": "https://github.com/djblets/djblets/commit/e2c79117efd925636acd871a5f473512602243cf"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}