إرسال #720129: badaso 2.9.7 Cryptographically Weak PRNGالمعلومات

عنوانbadaso 2.9.7 Cryptographically Weak PRNG
الوصفVulnerability Files: File Function/Line Issue src/Controllers/BadasoAuthController.php forgetPassword() Line 387 Weak random token generation src/Controllers/BadasoAuthController.php verify() Lines 61, 119 Weak verification token src/Controllers/BadasoAuthController.php reRequestVerification() Lines 227, 501, 605 Weak token reuse src/Controllers/BadasoAuthController.php resetPassword() Lines 428-471 No token expiration check Description: A critical authentication bypass vulnerability exists in Badaso ≤ 2.9.7. The password reset functionality uses PHP's cryptographically insecure rand() function to generate 6-digit verification tokens. Combined with the absence of token expiration checks and rate limiting, this allows remote attackers to brute-force password reset tokens and take over any user account.
المصدر⚠️ https://note-hxlab.wetolink.com/share/HG1CWbb7FVnq
المستخدم
 hiro (UID 93548)
ارسال19/12/2025 07:57 PM (6 أشهر منذ)
الاعتدال31/12/2025 03:46 PM (12 days later)
الحالةتمت الموافقة
إدخال VulDB339207 [Uasoft badaso حتى 2.9.7 Token BadasoAuthController.php forgetPassword تجاوز الصلاحيات]
النقاط20

التالي نظرة عامة السابق

Might our Artificial Intelligence support you?

Check our Alexa App!