Authorization Bypass Through User-Controlled Key in emoncms/emoncms
Jul 15th 2021
weak password requirements can lead to account takeover vulnerability as attacker easily can perform Bruteforce attacks.
🕵️♂️ Proof of Concept
if a attacker knows the username and email of the your users then attacker easily can reset the victim password and no privileges required for this.
after that attacker trying to Bruteforce the send password.
a sample send password is "e6fb67c24b" that obviously a 5 byte size for password is very weak.(it is exactly 5 byte not 10 character because of used characters are hex and each two hex character make one byte)
and at the end your login page hasn't any captcha verification and attacker can use Bruteforce attack without any problem.
This vulnerability is capable of take control of any user account.