![]() ![]() An attacker that obtained the password hash via an other attack vector (for example a path traversal vulnerability) could use it to login as the admin by setting the hash as the cookie value without the need to crack it to obtain the admin password (pass the hash). If a cookie is leaked or compromised it could be used forever as long as the admin password is not changed. ![]() The cookie itself is set to expire after 7 days but its value will remain valid as long as the admin password doesn't change. It also exposes the hash over the network and stores it unnecessarily in the browser. ![]() Improper use of admin WEBPASSWORD hash as "Remember me for 7 days" cookie value makes it possible for an attacker to "pass the hash" to login or reuse a theoretically expired "remember me" cookie. Versions 4.0 and above, prior to 5.18.3 are vulnerable to Insufficient Session Expiration. Pi-hole®'s Web interface (based off of AdminLTE) provides a central location to manage your Pi-hole. A handler thread can use an overwritten context->FileName. HL7 (Health Level 7) FHIR Core Libraries before 5.6.92 allow attackers to extract files into arbitrary directories via directory traversal from a crafted ZIP or TGZ archive (for a prepackaged terminology cache, NPM package, or comparison archive).Ī race condition in LightFTP through 2.2 allows an attacker to achieve path traversal via a malformed FTP request. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |