Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-15062

An issue was discovered in Dolibarr 11.0.0-alpha. A user can store an IFRAME element (containing a user/card.php CSRF request) in his Linked Files settings page. When visited by the admin, this could completely take over the admin account. (The protection mechanism for CSRF is to check the Referer header; however, because the attack is from one of the application's own settings pages, this mechanism is bypassed.)

Published

2019-08-14T23:15:10.437

Last Modified

2024-11-21T04:27:58.723

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 8.0 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

6.8

Impact Score

6.4

Weaknesses

Type: Primary
CWE-352

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	dolibarr	dolibarr_erp\/crm	11.0.0	Yes

References

https://gauravnarwani.com/publications/CVE-2019-15062/ Exploit, Third Party Advisory ([email protected])
https://github.com/Dolibarr/dolibarr/issues/11671 Exploit, Issue Tracking, Patch, Third Party Advisory ([email protected])
https://gauravnarwani.com/publications/CVE-2019-15062/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/Dolibarr/dolibarr/issues/11671 Exploit, Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)