BigProf Online Invoicing System before 3.0 offers a functionality that allows an administrator to move the records of members across groups. The applicable endpoint (admin/pageTransferOwnership.php) lacks CSRF protection, resulting in an attacker being able to escalate their privileges to Administrator and effectively taking over the application.
References
Link | Resource |
---|---|
https://github.com/bigprof-software/online-invoicing-system/releases/tag/3.0 | Third Party Advisory |
https://labs.ingredous.com/2020/07/13/ois-transfer-csrf/ | Broken Link |
https://github.com/bigprof-software/online-invoicing-system/releases/tag/3.0 | Third Party Advisory |
https://labs.ingredous.com/2020/07/13/ois-transfer-csrf/ | Broken Link |
Configurations
History
21 Nov 2024, 05:27
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-29 03:15
Updated : 2024-11-21 05:27
NVD link : CVE-2020-35675
Mitre link : CVE-2020-35675
CVE.ORG link : CVE-2020-35675
JSON object : View
Products Affected
bigprof
- online_invoicing_system
CWE
CWE-352
Cross-Site Request Forgery (CSRF)