Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrAnhdq201B3F888D2-5C71-4682-8287-42613401FD5A
HistoryAug 19, 2022 - 4:26 p.m.

Full account takeover

2022-08-1916:26:41
anhdq201
www.huntr.dev
43
account takeover
user account
burp suite
intercept requests
super admin
database change

EPSS

0.001

Percentile

41.1%

JSON

POC:

Step 1: Use a normal user account
image

Step 2: Change user password in edit profile function
image

Step 3: Enter data fields that change normally
image

Step 4: Use burp suite to intercept requests to update profile
image

Step 5: Change id from 2 to id 1 and send request
image

The result of logging in with the new username and password is usertest/Aa@123456
image

Successfully logged into the super admin account, the data in the database is changed
image

Related

osv 1
nvd 1
prion 1
cve 1
openvas 1
cvelist 1
osv
osv
CVE-2022-3152
2022-09-07 15:15:08
nvd
nvd
CVE-2022-3152
2022-09-07 15:15:08
prion
prion
Default credentials
2022-09-07 15:15:00
cve
cve
CVE-2022-3152
2022-09-07 15:15:08
openvas
openvas
PHPFusion < 9.10.30 Improper Authentication Vulnerability
2022-09-08 00:00:00
cvelist
cvelist
CVE-2022-3152 Unverified Password Change in phpfusion/phpfusion
2022-09-07 14:25:10

EPSS

0.001

Percentile

41.1%

JSON
Related for B3F888D2-5C71-4682-8287-42613401FD5A
osv1nvd1prion1cve1openvas1cvelist1