CVE-2023-42343
Cross-Site Scripting in Alkacon OpenCms
Publication date: 2026-05-08
Last updated on: 2026-05-08
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| alkacon | opencms | to 10.5.1 (exc) |
| alkacon | opencms | 9 |
| alkacon | opencms | 15 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2023-42343 is a Cross-Site Scripting (XSS) vulnerability in Alkacon OpenCms versions before 10.5.1. It occurs due to improper input validation in the CMIS query endpoint, specifically via the cmis-online/type path. Attackers can send specially crafted GET requests that include malicious scripts, which are then reflected back without proper sanitization.
This allows an attacker to execute arbitrary JavaScript code in the victim's browser, potentially leading to unauthorized actions or data theft.
What immediate steps should I take to mitigate this vulnerability?
The immediate mitigation step is to upgrade OpenCMS to version 10.5.1 or later, where this vulnerability has been patched.
Until the upgrade can be applied, consider implementing input validation and output encoding on the CMIS query endpoint to prevent script injection.
Additionally, monitor and block suspicious requests targeting the cmis-online/type endpoint that contain script tags or other malicious payloads.
How can this vulnerability impact me? :
This vulnerability can impact users by enabling attackers to execute arbitrary JavaScript in their browsers when they visit a vulnerable OpenCms site. This can lead to session hijacking, theft of sensitive information, or performing actions on behalf of the user without their consent.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by sending specially crafted GET requests to the vulnerable CMIS query endpoint and observing if the response reflects user input without proper sanitization.
A detection command example could be using curl to send a request to the cmis-online/type endpoint with a payload that includes a script tag or other XSS vector to see if it is reflected in the response.
- curl -v "http://<target>/cmis-online/type?query=<script>alert(1)</script>"
If the response contains the injected script tag without encoding or sanitization, the system is vulnerable.