Lucene search
Mnqazi4747A485-77C3-4BB5-AAB0-21253EF303CAHistoryApr 20, 2023 - 11:00 a.m.
Account TakeOver Due to Improper Handling of JWT Tokens
2023-04-2011:00:09
mnqazi
www.huntr.dev
12
vulnerability
jwt tokens
data modification
authorization bypass
improper verification
information security
EPSS
0.002
Percentile
57.9%
Description
I have discovered a vulnerability where any user can modify another user’s data including password simply by intercepting and changing the access token of the JWT using https://token.dev. The system does not verify whether the JWT token was issued by the server or not, allowing it to accept the edited JWT token. This can lead to unauthorized modification or changing of the email address, and password and other personal data of any user.
Proof of Concept
https://drive.google.com/file/d/1aTd_eBkqEX-LpdbCKI3E_fP1rzCg_aYd/view?usp=sharing
Related
osv
osv
CVE-2023-4696
2023-09-01 01:15:08
Account TakeOver Due to Improper Handling of JWT Tokens in usememos/memos in github.com/usememos/memos
2024-08-21 14:17:52
Account TakeOver Due to Improper Handling of JWT Tokens in usememos/memos
2023-09-01 03:30:14
cve
cve
CVE-2023-4696
2023-09-01 01:15:08
github
github
Account TakeOver Due to Improper Handling of JWT Tokens in usememos/memos
2023-09-01 03:30:14
cvelist
cvelist
CVE-2023-4696 Improper Access Control in usememos/memos
2023-09-01 00:00:19
veracode
veracode
Authorization Bypass
2023-09-05 14:58:36
prion
prion
Improper access control
2023-09-01 01:15:00
nvd
nvd
CVE-2023-4696
2023-09-01 01:15:08