PT-2023-30743 · Unknown · Openreplay

Mbiesiad

Published

2023-11-21

Updated

2023-11-29

CVE-2023-48226

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions OpenReplay version 1.14.0

Description OpenReplay is a self-hosted session replay suite. Due to a lack of validation in the Name field in Account Settings, a bad actor can send emails with HTML injected code to victims. This can be used for phishing actions. Although the email is sent from OpenReplay, bad actors can inject HTML code, allowing for content spoofing. It appears that during registration, the FullName field has correct validation, but bad actors can bypass this to achieve their goals.

Recommendations For OpenReplay version 1.14.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Code Injection

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94CWE-20

Related Identifiers

CVE-2023-48226

GHSA-XPFV-454C-3FJ4

Affected Products

Openreplay

PT-2023-30743 · Unknown · Openreplay

CVE-2023-48226

Weakness Enumeration

Related Identifiers

Affected Products

References · 9