Vulnerability Report-Broken Authentication
565 views
Skip to first unread message
talha shahid
Sep 6, 2023, 10:06:27 PM9/6/23
to slax-...@googlegroups.com
Hey Team,
I'm a penetration tester and bug bounty hunter. I have discovered multiple vulnerabilities on your site. I've reported one of my findings so that you can review it, as well as fix this issue.
I'm a penetration tester and bug bounty hunter. I have discovered multiple vulnerabilities on your site. I've reported one of my findings so that you can review it, as well as fix this issue.
Please review the report below.
Vulnerability: Broken Authentication & Session Management
We have observed that when we change "password" from one browser in place of session expiration from another browser it just updates the password from another browser and the old session gets updated without being logged out. The flows goes like this:
Broken Authentication and Session Management > Failure to Invalidate Session > On Password Change
Steps:
1- Login from two browsers at a time [From Chrome browser and from Mozilla Firefox].
2- Change password in settings from chrome browser.
3- Now Check Mozilla Firefox.
4- Your Session got "updated" in place of expiration.
Same goes with when using two different computer systems.
1- Login from two computers at a time
2- Change password in settings from computer A.
3- Now Check computer B.
4- Your Session got "updated" in place of expiration.
Recommendations: If Session is Updating from one Browser/Computer so other should expire first to renew session after login.
If you require any additional information, please let me know. I'll be waiting to hear from your side regarding the report and bounty. I'll share my other findings as well, once I've heard back from you.
Vulnerability: Broken Authentication & Session Management
We have observed that when we change "password" from one browser in place of session expiration from another browser it just updates the password from another browser and the old session gets updated without being logged out. The flows goes like this:
Broken Authentication and Session Management > Failure to Invalidate Session > On Password Change
Steps:
1- Login from two browsers at a time [From Chrome browser and from Mozilla Firefox].
2- Change password in settings from chrome browser.
3- Now Check Mozilla Firefox.
4- Your Session got "updated" in place of expiration.
Same goes with when using two different computer systems.
1- Login from two computers at a time
2- Change password in settings from computer A.
3- Now Check computer B.
4- Your Session got "updated" in place of expiration.
Recommendations: If Session is Updating from one Browser/Computer so other should expire first to renew session after login.
If you require any additional information, please let me know. I'll be waiting to hear from your side regarding the report and bounty. I'll share my other findings as well, once I've heard back from you.
Regards,
Tomas M
Sep 7, 2023, 12:55:04 AM9/7/23
to Slax users
This is very interesting spam, just ignore
Tomas M
Dne čt 7. 9. 2023 4:06 uživatel talha shahid <shahidt...@gmail.com> napsal:
--
You received this message because you are subscribed to the Google Groups "Slax users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to slax-users+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/slax-users/CAMz7wKkUqn%2BoVUY0DqaCo0Ag0Oxmh49TQD0dO58J42PGJQ0i%2Bw%40mail.gmail.com.
talha shahid
Sep 15, 2023, 4:54:40 PM9/15/23
to slax-...@googlegroups.com
Hi Team,
Can I have an update regarding the bounty for the reported vulnerability?
talha shahid
Sep 25, 2023, 11:40:10 PM9/25/23
to slax-...@googlegroups.com
Hi Team,
I believe that you have had an opportunity to read our previous email regarding the vulnerability report. As it's been long already and your team hasn't responded to the vulnerability report submitted by me, I was expecting $500 for responsible disclosure of vulnerability.
Furthermore I would like to publicly disclose vulnerability reports on our blogs for research and educational purposes. If you have any concerns do let me know.
Furthermore I would like to publicly disclose vulnerability reports on our blogs for research and educational purposes. If you have any concerns do let me know.
Kaldiaris Arteas
Sep 26, 2023, 2:31:22 AM9/26/23
to Slax users
he still working on it... hahaha...
sorryy.. hahaha
talha shahid
May 15, 2024, 3:21:37 AMMay 15
to slax-...@googlegroups.com
Hi,
It's been so long and I haven't heard any update from your side. Can I have an update regarding the bounty?
It's been so long and I haven't heard any update from your side. Can I have an update regarding the bounty?
talha shahid
Jul 3, 2024, 5:18:15 AMJul 3
to slax-...@googlegroups.com
Hi Team,
Any update regarding the report vulnerability and bounty ?
I hope you are doing well.
Any update regarding the report vulnerability and bounty ?
Waiting for your reply.
Thank you.
Reply all
Reply to author
Forward
0 new messages