id: CVE-2021-27309 info: name: Clansphere CMS 2011.4 - Cross-Site Scripting author: edoardottt severity: medium description: | Clansphere CMS 2011.4 contains an unauthenticated reflected cross-site scripting vulnerability via the "module" parameter. impact: | Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, leading to session hijacking, defacement, or theft of sensitive information. remediation: | Upgrade to a patched version of Clansphere CMS or apply the vendor-supplied patch to fix the XSS vulnerability. reference: - https://github.com/xoffense/POC/blob/main/Clansphere%202011.4%20%22module%22%20xss.md - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27309 - https://nvd.nist.gov/vuln/detail/CVE-2021-27309 - https://github.com/ARPSyndicate/kenzer-templates classification: cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N cvss-score: 6.1 cve-id: CVE-2021-27309 cwe-id: CWE-79 epss-score: 0.00106 epss-percentile: 0.42925 cpe: cpe:2.3:a:csphere:clansphere:2011.4:*:*:*:*:*:*:* metadata: verified: true max-request: 1 vendor: csphere product: clansphere tags: cve2021,cve,clansphere,xss,cms,unauth,csphere http: - method: GET path: - "{{BaseURL}}/mods/clansphere/lang_modvalidate.php?language=language&module=module%22>" matchers-condition: and matchers: - type: word part: body words: - '">.php' - type: word part: header words: - "text/html" - type: status status: - 200 # digest: 4a0a0047304502205b00fbd835bf6365747ca455e3baf330c2bf123afee61ae0f8981aa1dab11857022100ef6c2c713eaa742043860a3f65409516d36de9988dd7053879e71c4db8f4a572:922c64590222798bb761d5b6d8e72950