PT-2019-9847 · Webgalamb · Webgalamb

Daniel Jones

Publicado

2019-03-17

Atualizado

2019-10-03

CVE-2018-19515

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Webgalamb versions prior to 7.0

Description The system/ajax.php functionality in Webgalamb is supposed to be restricted to administrators. However, unauthenticated users can access most of these methods by utilizing certain query parameters, specifically bgsend, atment sddd1xGz, or xls bgimport.

Recommendations For Webgalamb versions prior to 7.0, restrict access to the system/ajax.php functionality to prevent unauthenticated users from exploiting the vulnerable query parameters bgsend, atment sddd1xGz, or xls bgimport. Consider temporarily disabling these parameters until a patch is available.

Exploit

Correção

Incorrect Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-863

Identificadores relacionados

CVE-2018-19515

Produtos afetados

Webgalamb

PT-2019-9847 · Webgalamb · Webgalamb

CVE-2018-19515

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4