CVE-2017-5594

Опубликовано: 25 янв. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 4.3

EPSS Низкий

Описание

An issue was discovered in Pagekit CMS before 1.0.11. In this vulnerability the remote attacker is able to reset the registered user's password, when the debug toolbar is enabled. The password is successfully recovered using this exploit. The SecureLayer7 ID is SL7_PGKT_01.

Ссылки

http://www.securityfocus.com/bid/95806
Third Party Advisory
VDB Entry
https://github.com/pagekit/pagekit/commit/e0454f9c037c427a5ff76a57e78dbf8cc00c268b
Patch
https://securelayer7.net/download/pdf/SecureLayer7-Pentest-report-Pagekit-CMS.pdf
Technical Description
Third Party Advisory
https://securelayer7.net/download/poc/password-reset-vulnerability-exploit-ruby-pagekit-cms.rb.txt
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/41143/
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/95806
Third Party Advisory
VDB Entry
https://github.com/pagekit/pagekit/commit/e0454f9c037c427a5ff76a57e78dbf8cc00c268b
Patch
https://securelayer7.net/download/pdf/SecureLayer7-Pentest-report-Pagekit-CMS.pdf
Technical Description
Third Party Advisory
https://securelayer7.net/download/poc/password-reset-vulnerability-exploit-ruby-pagekit-cms.rb.txt
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/41143/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pagekit:pagekit:*:*:*:*:*:*:*:*

Версия до 1.0.10 (включая)

EPSS

Процентиль: 89%

0.04961

Низкий

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-640

Связанные уязвимости

GHSA-rp89-32rp-qpq2