Compop Online Mall Authentication Bypass Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A vulnerability in Compop Online Mall version 3.5.3 allows remote attackers to execute arbitrary code by exploiting an authentication bypass. The issue arises from improper handling of Unix timestamp parameters in the URL, which are used for authentication. By replacing the timestamp with the current value, attackers can bypass access controls and place unauthorized orders, potentially disrupting restaurant operations.
Impact
Exploitation of this vulnerability could lead to unauthorized access and the ability to place orders on behalf of any table, causing operational disruptions for affected restaurants.
Reproduction
To reproduce this vulnerability, modify the 'ts' parameter in the URL to include the current Unix timestamp. This can be done using the 'date' command in Linux or PowerShell in Windows. After replacing the timestamp, submit the modified URL to bypass authentication and place unauthorized orders.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.