| 제목 | Kodbox 1.64 Improper Access Controls |
|---|
| 설명 | In kodbox 1.64, the shareSafeGroup endpoint uses a signed sk parameter for access control. When the site API key is empty, the code falls back to a hard-coded default key in Mcrypt, which is known from the source. An attacker can locally generate valid sk values using this default key and then, without authentication, call shareSafeGroup methods such as groupList and memberList to enumerate groups and read user information, including administrator details.
To fix this, kodbox must remove the default key fallback, enforce a strong non-empty shareOutSiteApiKey, adopt robust AEAD-based token protection, and require proper authentication and authorization for all shareSafeGroup operations. |
|---|
| 원천 | ⚠️ https://vulnplus-note.wetolink.com/share/rM8GdIOvQZrw |
|---|
| 사용자 | vulnplusbot (UID 96250) |
|---|
| 제출 | 2026. 03. 09. AM 04:15 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 03. 22. PM 12:40 (13 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 352424 [kalcaddle kodbox 1.64 Site-level API key shareOut.class.php shareSafeGroup sk 약한 암호화] |
|---|
| 포인트들 | 20 |
|---|