| Título | SKyTech HuiRan(XinKa) Host Reseller System <=2.0.0 Authentication Bypass |
|---|
| Descrição | The vulnerability in the HuiRan(XinKa) Host Reseller System allows an attacker to reset the password of any user account without authorization. By manipulating the 'voucher' session variable through a series of crafted POST requests to the application's 'sendyzms', 'sendyzm', and 'findpass' endpoints, the attacker can bypass the normal password reset code verification process and change a user's password to one of their choosing, effectively taking over the account. The exploit hinges on the system's failure to properly validate and segregate user session data during the password reset process. |
|---|
| Fonte | ⚠️ https://note.zhaoj.in/share/WwPWWizD2Spk |
|---|
| Utilizador | glzjin (UID 59815) |
|---|
| Submissão | 01/01/2024 12h15 (há 2 anos) |
|---|
| Moderação | 01/01/2024 16h41 (4 hours later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 249444 [HuiRan Host Reseller System até 2.0.0 HTTP POST Request findpass?do=4 Elevação de Privilégios] |
|---|
| Pontos | 20 |
|---|