sourcebans-pp icon indicating copy to clipboard operation
sourcebans-pp copied to clipboard
verified publisher icon sbpp

Security: XAJAX API 'Plogin' Vulnerable to Brute Force Attacks

Open butt0n-sudo opened this issue 1 year ago • 1 comments

Description

CWE-307: Improper Restriction of Excessive Authentication Attempts An attacker can easily utilize Plogin to Brute Force a valid user's passwords.

Details

The Plogin function in sb-callback.php is not rate-limited and is susceptible to brute force attacks against a valid user account. When combined with issues Vulnerability in Forgot Password implementation (#975) and Security: XAJAX API 'Plogin' can bypass disabled 'Enable Normal Login' (#989) allows for the enumeration of valid usernames and the brute forcing of passwords regardless of if the end user disables "Normal Login". This process can be easily automated utilizing known leaked credentials.

https://github.com/sbpp/sourcebans-pp/blob/62f2ab7a2062127d3ceb5c2c52dcb01b69aab461/web/includes/sb-callback.php#L104

1725399160_grim

butt0n-sudo avatar Sep 04 '24 09:09 butt0n-sudo