CodeIgniter Privilege Escalation Vulnerability via Email ID Modification

A vulnerability in CodeIgniter through version 4.0.0 allows remote attackers to gain unauthorized privileges by altering the Email ID sent to the 'Select Role of the User' page. This issue is reportedly linked to a custom module or plugin rather than the CodeIgniter framework itself, as the framework does not provide built-in authentication or user management features.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing attackers to gain elevated rights within the application.

Reproduction

To reproduce this vulnerability, access a web application built with CodeIgniter that is using a custom authentication module compatible with CodeIgniter's role-based access control. Navigate to the 'Select Role of the User' page and modify the Email ID parameter to an arbitrary value. This action may grant unauthorized privileges based on the role associated with the modified Email ID.