Lucene search
Mah1ndraB398E4C9-6CDF-4973-AD86-DA796CDE221FHistoryApr 10, 2022 - 10:27 a.m.
Leaking password protected articles content due to improper access control
2022-04-1010:27:53
mah1ndra
www.huntr.dev
18
improper access control
leaked content
meta tags
password protection
EPSS
0.001
Percentile
26.1%
Description
Any user who can publish their article can protect it using a password before publishing. So, a valid password to the article is required to view the contents of the article. But when a request is made to article /2022/04/10/<article-title> the UI show it requires a password to view content. But the content of the article is leaked in meta tags of the response.
Proof of Concept
Steps to Reproduce:
- Login to app as Admin and create an article and protect it with a password and publish it
- Now, login as a demo user and navigate to the newly published article. You can see the UI shows it requires a password to view.
- But the content of the article is already leaked in the meta tags of the response body
Related
osv
osv
BIT-publify-2022-1553
2024-03-06 11:03:42
Publify exposes article metadata
2022-05-17 00:01:41
CVE-2022-1553
2022-05-16 15:15:09
github
github
Publify exposes article metadata
2022-05-17 00:01:41
cnvd
cnvd
Publify Information Disclosure Vulnerability
2022-05-18 00:00:00
prion
prion
Improper access control
2022-05-16 15:15:00
nvd
nvd
CVE-2022-1553
2022-05-16 15:15:09
cve
cve
CVE-2022-1553
2022-05-16 15:15:09
rubygems
rubygems
Article metadata exposure in publify
2022-05-16 21:00:00
cvelist
cvelist
veracode
veracode
Information Disclosure
2022-05-17 07:55:57