Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TechDocs content sanitization bypass
Vulnerability Description
Backstage is an open platform for building developer portals, and techdocs-common contains common functionalities for Backstage's TechDocs. In versions of `@backstage/tehdocs-common` prior to 0.6.4, a malicious internal actor is able to upload documentation content with malicious scripts. These scripts would normally be sanitized by the TechDocs frontend, but by tricking a user to visit the content via the TechDocs API, the content sanitazion will be bypassed. If the TechDocs API is hosted on the same origin as the Backstage app or other backend plugins, this may give access to sensitive data. The ability to upload malicious content may be limited by internal code review processes, unless the chosen TechDocs deployment method is to use an object store and the actor has access to upload files directly to that store. The vulnerability is patched in the `0.6.4` release of `@backstage/techdocs-common`.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
backstage 代码问题漏洞
Vulnerability Description
backstage是一个应用软件。后台是一个开放的平台,用于构建开发者门户 backstage 中 techdocs-common 0.6.4 之前版本存在代码问题漏洞,内部攻击者能够使用恶意脚本上传文档内容。这些脚本通常由 TechDocs 前端清理,但通过欺骗用户通过 TechDocs API 访问内容,内容清理可以被绕过。
CVSS Information
N/A
Vulnerability Type
N/A