Exploit/Advisories
Published on June 3rd, 2021 📆 | 6038 Views ⚑
0Products.PluggableAuthService 2.6.0 Open Redirect – Torchsec
- Products.PluggableAuthService 2.6.0 Open Redirect
- Posted Jun 2, 2021
- Authored by Piyush Patil
-
Products.PluggableAuthService version 2.6.0 suffers from an open redirection vulnerability.
- advisories | CVE-2021-21337
- MD5 |
4b70535ef74ac82dc36e19572d6af760
- Download | Favorite | View
# Exploit Title: Products.PluggableAuthService 2.6.0 - Open Redirect
# Exploit Author: Piyush Patil
# Affected Component: Pluggable Zope authentication/authorization framework
# Component Link: https://pypi.org/project/Products.PluggableAuthService/
# Version: < 2.6.1
# CVE: CVE-2021-21337
# Reference: https://github.com/zopefoundation/Products.PluggableAuthService/security/advisories/GHSA-p44j-xrqg-4xrr--------------------------Proof of Concept-----------------------
1- Goto https://localhost/login
2- Turn on intercept and click on the login
3- Change "came_from" parameter value to https://attacker.com
4- User will be redirected to an attacker-controlled website.
Fix: pip install "Products.PluggableAuthService>=2.6.1"
Gloss