A vulnerability classified as problematic has been found in Arno0x TwoFactorAuth (version now known). This affects some unknown processing of the file login/login.php. The manipulation of the argument from with an unknown input leads to a redirect vulnerability. CWE is classifying the issue as CWE-601. A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks. This is going to have an impact on integrity.

The weakness was presented 03/24/2023. It is possible to read the advisory at github.com. This vulnerability is uniquely identified as CVE-2016-15030. It demands that the victim is doing some kind of user interaction. Technical details of the vulnerability are known, but there is no available exploit. The attack technique deployed by this issue is T1204.001 according to MITRE ATT&CK.

By approaching the search of inurl:login/login.php it is possible to find vulnerable targets with Google Hacking.

Applying the patch 8549ad3cf197095f783643e41333586d6a4d0e54 is able to eliminate this problem. The bugfix is ready for download at github.com. The advisory contains the following remark:

Using cross-site ?from, the user can be presented with a fake "auth failed" page, which will trick them into logging in again. Since they are now on a different site, the site can capture their user, password, an

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Productinfo

Vendor

• Arno0x

Name

• TwoFactorAuth

License

• open-source

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion