An issue was discovered in Dolibarr 11.0.0-alpha. A user can store an IFRAME element (containing a user/card.php CSRF request) in his Linked Files settings page. When visited by the admin, this could completely take over the admin account. (The protection mechanism for CSRF is to check the Referer header; however, because the attack is from one of the application's own settings pages, this mechanism is bypassed.)
References
Link | Resource |
---|---|
https://gauravnarwani.com/publications/CVE-2019-15062/ | Exploit Third Party Advisory |
https://github.com/Dolibarr/dolibarr/issues/11671 | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-08-14T22:54:51
Updated: 2019-08-15T15:21:16
Reserved: 2019-08-14T00:00:00
Link: CVE-2019-15062
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-08-14T23:15:10.437
Modified: 2022-11-17T17:21:59.260
Link: CVE-2019-15062
JSON object: View
Redhat Information
No data.
CWE