Skip to content

Froxlor username/surname AND company field Bypass

High severity GitHub Reviewed Published Jan 3, 2024 in froxlor/Froxlor • Updated Jan 4, 2024

Package

composer froxlor/froxlor (Composer)

Affected versions

<= 2.1.1

Patched versions

2.1.2

Description

Dear Sirs and Madams,

I would like to report a business logic error vulnerability that I discovered during my recent penetration test on Froxlor.

Specifically, I identified an issue where it was possible to submit the registration form with the essential fields, such as the username and password, left intentionally blank. This inadvertent omission allowed for a bypass of the mandatory field requirements established by the system.

The surname, family name AND company name all of them can be left blank.

I believe addressing this vulnerability is crucial to ensure the security and integrity of the Froxlor platform.

Thank you for your attention to this matter.

This action served as a means to bypass the mandatory field requirements.

Lets see (please have a look at the Video -> attachment).

as you can see i was able to let the username and second name blank.

https://user-images.githubusercontent.com/80028768/289675319-81ae8ebe-1308-4ee3-bedb-43cdc40da474.mp4

Lets see again.

Only the company name is set.

Thank you for your time

Froxlor 2
Froxlor 1

References

@d00p d00p published to froxlor/Froxlor Jan 3, 2024
Published by the National Vulnerability Database Jan 3, 2024
Published to the GitHub Advisory Database Jan 4, 2024
Reviewed Jan 4, 2024
Last updated Jan 4, 2024

Severity

High
7.5
/ 10

CVSS base metrics

Attack vector
Network
Attack complexity
Low
Privileges required
None
User interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Weaknesses

CVE ID

CVE-2023-50256

GHSA ID

GHSA-625g-fm5w-w7w4

Source code

Credits

Checking history
See something to contribute? Suggest improvements for this vulnerability.