First published: Tue Dec 12 2023(Updated: )
Umbraco is an ASP.NET content management system (CMS). Starting in version 7.0.0 and prior to versions 7.15.11, 8.18.9, 10.7.0, 11.5.0, and 12.2.0, a user with access to the backoffice can upload SVG files that include scripts. If the user can trick another user to load the media directly in a browser, the scripts can be executed. Versions 7.15.11, 8.18.9, 10.7.0, 11.5.0, and 12.2.0 contain a patch for this issue. Some workarounds are available. Implement the server side file validation or serve all media from an different host (e.g cdn) than where Umbraco is hosted.
Credit: security-advisories@github.com security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
nuget/Umbraco.CMS | >=12.0.0<12.2.0 | 12.2.0 |
nuget/Umbraco.CMS | >=11.0.0<11.5.0 | 11.5.0 |
nuget/Umbraco.CMS | >=9.0.0<10.7.0 | 10.7.0 |
nuget/Umbraco.CMS | >=8.0.0<8.18.9 | 8.18.9 |
nuget/Umbraco.CMS | >=7.0.0<7.15.11 | 7.15.11 |
Umbraco Umbraco Cms | >=7.0.0<7.15.11 | |
Umbraco Umbraco Cms | >=8.0.0<8.18.9 | |
Umbraco Umbraco Cms | >=10.0.0<10.7.0 | |
Umbraco Umbraco Cms | >=11.0.0<11.5.0 | |
Umbraco Umbraco Cms | >=12.0.0<12.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.