3DAlloy allows stored XSS through attributes provided to the 3d...

8.6 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Description

3DAlloy is a lightWeight 3D-viewer for MediaWiki. From 1.0 through 1.8, the <3d> parser tag and the {{#3d}} parser function allow users to provide custom attributes that are then appended to the canvas HTML element that is being output by the extension. The attributes are not sanitized, which means that arbitrary JavaScript can be inserted and executed.

Basic Information

ID CVE-2025-59332

Source GitHub_M

Published Sep 15, 2025 at 20:06

Modified Sep 15, 2025 at 20:41

Affected Product

Vendor dolfinus

Product 3DAlloy

Version >= 1.0, <= 1.8

Affected Versions dolfinus 3DAlloy >= 1.0, <= 1.8

CWE Classification

CWE-79

References

{
    "lastseen": "",
    "description": "3DAlloy is a lightWeight 3D-viewer for MediaWiki. From 1.0 through 1.8, the <3d> parser tag and the {{#3d}} parser function allow users to provide custom attributes that are then appended to the canvas HTML element that is being output by the extension. The attributes are not sanitized, which means that arbitrary JavaScript can be inserted and executed.",
    "published": "2025-09-15T20:06:56.961Z",
    "modified": "2025-09-15T20:41:39.570Z",
    "type": "cve",
    "title": "3DAlloy allows stored XSS through attributes provided to the 3d parser tag/function",
    "source": "GitHub_M",
    "references": "https://github.com/dolfinus/3DAlloy/security/advisories/GHSA-f2rp-232x-mqrh\nhttps://github.com/dolfinus/3DAlloy/commit/9fac7936254886265ac89c8824c4816d009b7a1b",
    "id": "CVE-2025-59332",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "dolfinus 3DAlloy >= 1.0, <= 1.8",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "3DAlloy",
    "version": ">= 1.0, <= 1.8",
    "vendor": "dolfinus",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

3DAlloy allows stored XSS through attributes provided to the 3d parser tag/function_CVE-2025-59332