New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Account Takeover through Login/Redirect #1042
Comments
Thanks for report. Fixed for version 2.0.4 |
Thanks for the reply. Is there any way to hunt and get CVEs, because huntr.dev (huntr.com) is no longer accepting responses and I really wanna pentest your product. |
hi , can you try to submit from the profile link https://huntr.com/repos/microweber/microweber |
Hi, i have send them a message from the contact form at https://huntr.com/contact-us |
Thanks! Please let me know if there is any update! |
That's sad, I submitted CVE to MITRE, hopefully they will reply. Thanks for contacting them! |
Description
Login credentials should be posted only via POST request but get sent via GET request.
Proof of Concept
Impact
Attacker will get credentials through traffic as they are passed in GET request
Remediation
I think the problem is with the redirect after login. I am not a programmer but maybe issue is related to this code
Reference
https://cwe.mitre.org/data/definitions/598.html - Use of GET Request Method With Sensitive Query Strings
CVSS Score
Request
It would be great if it is possible to assign a CVE as huntr dev is not accepting reports to your repo.
The text was updated successfully, but these errors were encountered: