Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2025-27888
Summary
The package org.apache.druid:druid-server contains vulnerabilities, including Server-side Request Forgery (SSRF), Improper Neutralization of Input During Web Page Generation (Cross-Site Scripting), and URL Redirection to Untrusted Sites (Open Redirect) in Apache Druid. This issue affects all previous Druid versions. When using the Druid management proxy, a request that has a specially crafted URL could be used to redirect the request to an arbitrary server instead. This has the potential for XSS or XSRF. The user is required to be authenticated for this exploit. The management proxy is enabled in Druid's out-of-box configuration. It may be disabled to mitigate this vulnerability. If the management proxy is disabled, some web console features will not work properly, but core functionality is unaffected. This issue affects versions druid-0.13.0-incubating through 31.0.1 and 32.0.0.
- LOW
- NETWORK
- LOW
- CHANGED
- REQUIRED
- LOW
- LOW
- NONE
CWE-79 - Cross Site Scripting
Cross-Site Scripting, commonly referred to as XSS, is the most dominant class of vulnerabilities. It allows an attacker to inject malicious code into a pregnable web application and victimize its users. The exploitation of such a weakness can cause severe issues such as account takeover, and sensitive data exfiltration. Because of the prevalence of XSS vulnerabilities and their high rate of exploitation, it has remained in the OWASP top 10 vulnerabilities for years.
References
Advisory Timeline
- Published
