Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: nextcloud acunetix scan is showing bootstrap version 3.3.5 is vulnerable to cross site scripting attacks. #43893

Closed
5 of 8 tasks
Knkkyl opened this issue Feb 28, 2024 · 5 comments
Closed
5 of 8 tasks

[Bug]: nextcloud acunetix scan is showing bootstrap version 3.3.5 is vulnerable to cross site scripting attacks. #43893

Knkkyl opened this issue Feb 28, 2024 · 5 comments
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap 27-feedback bug feature: files needs info security

Comments

@Knkkyl
Copy link

Knkkyl commented Feb 28, 2024

⚠️ This issue respects the following points: ⚠️

Bug description

Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Vulnerability. In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
References
CVE-2018-14040,CVE-2018-20677,CVE-2018-14042,CVE-2018-20676 & CVE-2019-8331

Steps to reproduce

  1. Perform acunetix scan of nextcloud

Expected behavior

acunetix scan should report latest bootstrap version

Installation method

Community Manual installation with Archive

Nextcloud Server version

27

Operating system

Debian/Ubuntu

PHP engine version

PHP 8.1

Web server

Apache (supported)

Database engine version

MariaDB

Is this bug present after an update or on a fresh install?

Fresh Nextcloud Server install

Are you using the Nextcloud Server Encryption module?

None

What user-backends are you using?

  • Default user-backend (database)
  • LDAP/ Active Directory
  • SSO - SAML
  • Other

Configuration report

No response

List of activated Apps

No response

Nextcloud Signing status

No response

Nextcloud Logs

No response

Additional info

No response
@Knkkyl Knkkyl added 0. Needs triage Pending check for reproducibility or if it fits our roadmap bug labels Feb 28, 2024
@joshtrichards
Copy link
Member

joshtrichards commented Feb 28, 2024
edited
Loading

Can you be more specific? Is this a clean installation? What file is this showing up?

We don't ship with ancient bootstrap versions like that in any of our supported versions of Server anywhere I can see:

FYI, in the future please use the appropriate channel for vulnerability reports: https://github.com/nextcloud/server/blob/master/SECURITY.md#reporting-a-vulnerability

@ghost
Copy link

ghost commented Feb 28, 2024

Please refer dist/core-common.js . If you grep this file for Bootstrap you will get a hit for version 3.3.5

@joshtrichards
Copy link
Member

nextcloud-libraries/nextcloud-vue#3979

@solracsf
Copy link
Member

See also #17959

@skjnldsv
Copy link
Member

skjnldsv commented Nov 8, 2024

Deps updated and/or removed on latests versions

@skjnldsv skjnldsv closed this as not planned Won't fix, can't repro, duplicate, stale Nov 8, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap 27-feedback bug feature: files needs info security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@joshtrichards @solracsf @skjnldsv @szaimen @Knkkyl