Описание
Admidio Vulnerable to HTML Injection In The Messages Section
Summary
An unsafe deserialization vulnerability allows any unauthenticated user to execute arbitrary code on the server.
PoC
- Go to https://www.admidio.org/demo_en/adm_program/modules/messages/messages.php
- Click on Send Private Message
- In the
Messagefield, enter the following payloadTesting<br><h1>HTML</h1><br><h2>Injection</h2>
- Send the message
- Open the message again
Impact
- Data Theft: Stealing sensitive information like cookies, session tokens, and user credentials.
- Session Hijacking: Gaining unauthorized access to user accounts.
- Phishing: Tricking users into revealing sensitive information.
- Website Defacement: Altering the appearance or content of the website.
- Malware Distribution: Spreading malware to users' devices.
- Denial of Service (DoS): Overloading the server with malicious requests.
Пакеты
Наименование
admidio/admidio
composer
Затронутые версииВерсия исправления
< 4.3.12
4.3.12
Связанные уязвимости
CVSS3: 3.5
nvd
больше 1 года назад
Admidio is an open-source user management solution. Prior to version 4.3.12, an unsafe deserialization vulnerability allows any unauthenticated user to execute arbitrary code on the server. Version 4.3.12 fixes this issue.