Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrXo19do11877CBF-FCAF-42EF-813E-502C7293F2B5
HistoryDec 27, 2022 - 7:16 p.m.

Able to assign HOST role to new User

2022-12-2719:16:30
xo19do
www.huntr.dev
5
functionality
user role
server side validation
burp
privilege escalation
bug bounty

0.001 Low

EPSS

Percentile

34.8%

JSON

Description

As per the functionality we only can add user role as a “USER” in account Due to the no server side valaditon on “role” parameter , we can add new member as a “HOST” role with all HOST users privilege

Proof of Concept

  1. while adding new user intercept the request in burp
  2. change the POST body role paramater value as “HOST”
  3. the newaly added user have HOST users privilege

poc

refer ss/Video POC : https://drive.google.com/drive/folders/1CqD7SKaBMx3ms7Px3vKFR-9puI_a0V-a?usp=sharing

Related

osv 2
prion 1
veracode 1
cvelist 1
cve 1
nvd 1
github 1
osv
osv
usememos/memos Improper Privilege Management vulnerability
2022-12-28 15:30:46
CVE-2022-4808
2022-12-28 14:15:11
prion
prion
Input validation
2022-12-28 14:15:00
veracode
veracode
Privilege Escalation
2023-01-02 13:37:01
cvelist
cvelist
CVE-2022-4808 Improper Privilege Management in usememos/memos
2022-12-28 00:00:00
cve
cve
CVE-2022-4808
2022-12-28 14:15:11
nvd
nvd
CVE-2022-4808
2022-12-28 14:15:11
github
github
usememos/memos Improper Privilege Management vulnerability
2022-12-28 15:30:46

0.001 Low

EPSS

Percentile

34.8%

JSON
Related for 11877CBF-FCAF-42EF-813E-502C7293F2B5
osv2prion1veracode1cvelist1cve1nvd1github1