CVE-2023-45809

Wagtail is an open source content management system built on Django. A user with a limited-permission editor account for the Wagtail admin can make a direct URL request to the admin view that handles bulk actions on user accounts. While authentication rules prevent the user from making any changes, the error message discloses the display names of user accounts, and by modifying URL parameters, the user can retrieve the display name for any user. The vulnerability is not exploitable by an ordinary site visitor without access to the Wagtail admin. Patched versions have been released as Wagtail 4.1.8 (LTS), 5.0.5 and 5.1.3. The fix is also included in Release Candidate 1 of the forthcoming Wagtail 5.2 release. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*
cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*
cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:27

Type Values Removed Values Added
References () https://github.com/wagtail/wagtail/commit/bc96aed6ac53f998b2f4c4bf97e2d4f5fe337e5b - Patch () https://github.com/wagtail/wagtail/commit/bc96aed6ac53f998b2f4c4bf97e2d4f5fe337e5b - Patch
References () https://github.com/wagtail/wagtail/security/advisories/GHSA-fc75-58r8-rm3h - Vendor Advisory () https://github.com/wagtail/wagtail/security/advisories/GHSA-fc75-58r8-rm3h - Vendor Advisory

28 Dec 2023, 18:58

Type Values Removed Values Added
First Time Torchbox wagtail
Torchbox
CPE cpe:2.3:a:wagtail:wagtail:*:*:*:*:*:*:*:* cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*

31 Oct 2023, 18:51

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 2.7
References (MISC) https://github.com/wagtail/wagtail/security/advisories/GHSA-fc75-58r8-rm3h - (MISC) https://github.com/wagtail/wagtail/security/advisories/GHSA-fc75-58r8-rm3h - Vendor Advisory
References (MISC) https://github.com/wagtail/wagtail/commit/bc96aed6ac53f998b2f4c4bf97e2d4f5fe337e5b - (MISC) https://github.com/wagtail/wagtail/commit/bc96aed6ac53f998b2f4c4bf97e2d4f5fe337e5b - Patch
First Time Wagtail wagtail
Wagtail
CPE cpe:2.3:a:wagtail:wagtail:*:*:*:*:*:*:*:*
CWE CWE-532

19 Oct 2023, 19:36

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-19 19:15

Updated : 2024-11-21 08:27


NVD link : CVE-2023-45809

Mitre link : CVE-2023-45809

CVE.ORG link : CVE-2023-45809


JSON object : View

Products Affected

torchbox

  • wagtail
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-425

Direct Request ('Forced Browsing')

CWE-532

Insertion of Sensitive Information into Log File