๐ U.S. Dept Of Defense: Improper Authentication (Login without Registration with any user) at โโโโ
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vulners.com
Hi Team! I found a security issue in โโโโโโโ. An attacker could login as a any user without registration in the page and above all it can change the session of a victim and authenticate him as any user. The problem is at the endpoint โโโโโโโโโโ which, thanks to the signin parameter, allows to authenticate anyone with any user. Impact Authentication bypass (Login as any user without authentication) Force a victim to change session with other user System Host(s) โโโโ Affected Product(s) and Version(s) CVE Numbers Steps to Reproduce Go to โโโโโโโโโโ To check the authentication bypass go to โโโโ: โโโ As the link corresponds to a GET request you can force any user to log out and authenticate to any other account. Additional bonus: clientid and clientsecret are stored in the page source โโโโโโโ Suggested Mitigation/Remediation... ...