← Advisories

ArticleFR 3.0.6 CSRF Add Admin Exploit

Medium

Advisory ID

ZSL-2015-5248

Release Date

13 July 2015

Vendor

Free Reprintables - http://www.freereprintables.com

Affected Version

3.0.6

CVE

CVE-2015-5530

Tested On

nginx/1.6.2, PHP

Summary

A lightweight fully featured content (article / video) management system. Comes with a pluginable and multiple module framework system.

Description

The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.

Proof of Concept

articlefr_csrf.txtTXT

Disclosure Timeline

N/A

Credits

Vulnerability discovered by Gjoko Krstic

References

[1]http://cxsecurity.com/issue/WLB-2015070061

[2]https://packetstormsecurity.com/files/132684

[3]https://www.exploit-db.com/exploits/37596/

[4]https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5530

[5]http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5530

[6]http://www.scip.ch/en/?vuldb.76729

[7]https://exchange.xforce.ibmcloud.com/vulnerabilities/104898

Changelog

13.07.2015Initial release

14.07.2015Added reference [1], [2] and [3]

19.07.2015Added reference [4], [5] and [6]

13.08.2015Added reference [7]