Project

General

Profile

Actions
Copy link

Bug #69

closed

Feature #65: Security Audit

[Security Audit ] 4- User Account Takeover

Added by Kalyan Battula about 1 year ago. Updated 7 months ago.

Status:
Closed
Priority:
High
Assignee:
Vasudev Mamidi
Category:
-
Target version:
Security Audit
Start date:
17/04/2024
Due date:
% Done:

0%

Estimated time:
Deployed In:
Category:

Description

4- User Account Takeover
CWE : CWE-285
Description :
The software does not perform or incorrectly performs an authorization check when an
actor attempts to access a resource or perform an action.
Affected Path(s) :
https://earogya.satragroup.in/login *-Applicable to entire application
Impact :
An attacker could modify sensitive data, either by writing the data directly to a data
store that is not properly restricted, or by accessing insufficiently-protected, privileged
functionality to write the data.
Recommendation :
It is recommended to make sure that the access control mechanism is enforced correctly
at the server side on every page. Users should not be able to access any unauthorized
functionality or information by simply requesting direct access to that page.
Evidence/Proof Of Concept :
Step 1: Access the application and go to forgot password page.Enter valid user then capture
the request as shown in below screenshot.

Step 2: Change userid 316 to 317 then forword the requet.Observe the response Password
changed sucessfully with Modified user.

Files

Download all files
clipboard-202404171535-tehk1.png (48.2 KB) clipboard-202404171535-tehk1.png Kalyan Battula, 17/04/2024 03:35 PM
clipboard-202404171535-k8l7w.png (33.7 KB) clipboard-202404171535-k8l7w.png Kalyan Battula, 17/04/2024 03:35 PM
Actions
Copy link

Also available in: Atom PDF