ghsa-7c4c-749j-pfp2
Vulnerability from github
Published
2024-10-16 19:50
Modified
2024-10-16 22:07
Severity ?
VLAI Severity ?
Summary
Admidio Vulnerable to HTML Injection In The Messages Section
Details
Summary
An unsafe deserialization vulnerability allows any unauthenticated user to execute arbitrary code on the server.
PoC
- Go to https://www.admidio.org/demo_en/adm_program/modules/messages/messages.php
- Click on Send Private Message
- In the
Messagefield, enter the following payloadTesting<br><h1>HTML</h1><br><h2>Injection</h2>
- Send the message
- Open the message again
Impact
- Data Theft: Stealing sensitive information like cookies, session tokens, and user credentials.
- Session Hijacking: Gaining unauthorized access to user accounts.
- Phishing: Tricking users into revealing sensitive information.
- Website Defacement: Altering the appearance or content of the website.
- Malware Distribution: Spreading malware to users' devices.
- Denial of Service (DoS): Overloading the server with malicious requests.
{
"affected": [
{
"package": {
"ecosystem": "Packagist",
"name": "admidio/admidio"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.3.12"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-47836"
],
"database_specific": {
"cwe_ids": [
"CWE-502",
"CWE-79"
],
"github_reviewed": true,
"github_reviewed_at": "2024-10-16T19:50:40Z",
"nvd_published_at": "2024-10-16T20:15:06Z",
"severity": "LOW"
},
"details": "### Summary\nAn unsafe deserialization vulnerability allows any unauthenticated user to execute arbitrary code on the server.\n\n### PoC\n1. Go to\nhttps://www.admidio.org/demo_en/adm_program/modules/messages/messages.php\n2. Click on Send Private Message\n3. In the `Message` field, enter the following payload\n`Testing\u003cbr\u003e\u003ch1\u003eHTML\u003c/h1\u003e\u003cbr\u003e\u003ch2\u003eInjection\u003c/h2\u003e`\n\n\u003e \n\n\n4. Send the message\n5. Open the message again\n\n\u003e \n\n\n\n### Impact\n1. Data Theft: Stealing sensitive information like cookies, session tokens, and user credentials.\n2. Session Hijacking: Gaining unauthorized access to user accounts.\n3. Phishing: Tricking users into revealing sensitive information.\n4. Website Defacement: Altering the appearance or content of the website.\n5. Malware Distribution: Spreading malware to users\u0027 devices.\n6. Denial of Service (DoS): Overloading the server with malicious requests.",
"id": "GHSA-7c4c-749j-pfp2",
"modified": "2024-10-16T22:07:51Z",
"published": "2024-10-16T19:50:40Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/Admidio/admidio/security/advisories/GHSA-7c4c-749j-pfp2"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47836"
},
{
"type": "WEB",
"url": "https://github.com/Admidio/admidio/commit/176f60de6a38dde2b8e848b97647194c12cf5a6c"
},
{
"type": "PACKAGE",
"url": "https://github.com/Admidio/admidio"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
}
],
"summary": "Admidio Vulnerable to HTML Injection In The Messages Section"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…