CVE-2024-37304

NuGet Gallery is a package repository that powers nuget.org. The NuGetGallery has a security vulnerability related to its handling of autolinks in Markdown content. While the platform properly filters out JavaScript from standard links, it does not adequately sanitize autolinks. This oversight allows attackers to exploit autolinks as a vector for Cross-Site Scripting (XSS) attacks. When a user inputs a Markdown autolink such as `<javascript:alert(1)>`, the link is rendered without proper sanitization. This means that the JavaScript code within the autolink can be executed by the browser, leading to an XSS attack. Version 2024.05.28 contains a patch for this issue.
Configurations

No configuration.

History

21 Nov 2024, 09:23

Type Values Removed Values Added
References () https://github.com/NuGet/NuGetGallery/commit/c52b023659f4ad7b626874c1063f2b5e878a4fe0 - () https://github.com/NuGet/NuGetGallery/commit/c52b023659f4ad7b626874c1063f2b5e878a4fe0 -
References () https://github.com/NuGet/NuGetGallery/pull/9836 - () https://github.com/NuGet/NuGetGallery/pull/9836 -
References () https://github.com/NuGet/NuGetGallery/security/advisories/GHSA-gwjh-c548-f787 - () https://github.com/NuGet/NuGetGallery/security/advisories/GHSA-gwjh-c548-f787 -

13 Jun 2024, 18:36

Type Values Removed Values Added
Summary
  • (es) NuGet Gallery es un repositorio de paquetes que impulsa nuget.org. NuGetGallery tiene una vulnerabilidad de seguridad relacionada con el manejo de enlaces automáticos en el contenido de Markdown. Si bien la plataforma filtra adecuadamente JavaScript de los enlaces estándar, no sanitiza adecuadamente los enlaces automáticos. Esta supervisión permite a los atacantes explotar los enlaces automáticos como vector para ataques de cross-site scripting (XSS). Cuando un usuario ingresa un enlace automático de Markdown como ``, el enlace se representa sin la sanitización adecuada. Esto significa que el navegador puede ejecutar el código JavaScript dentro del enlace automático, lo que provoca un ataque XSS. La versión 2024.05.28 contiene un parche para este problema.

12 Jun 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-12 15:15

Updated : 2024-11-21 09:23


NVD link : CVE-2024-37304

Mitre link : CVE-2024-37304

CVE.ORG link : CVE-2024-37304


JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')