Janto Insufficient Data Authenticity Verification Vulnerability Allowing Email Content Modification
Vulnerability
A vulnerability exists in Janto versions prior to r12, related to insufficient verification of data authenticity. This flaw enables an unauthenticated attacker to alter the content of emails that are sent for password reset purposes. The exploitation involves sending a POST request with injected malicious content into the 'Xml' parameter, directed at the '/public/cgi/Gateway.php' endpoint.
Impact
Exploitation of this vulnerability allows for unauthorized modification of email content, specifically in password reset communications, potentially leading to unauthorized password changes.
Reproduction
To reproduce this vulnerability, send a POST request to the '/public/cgi/Gateway.php' endpoint. Inject malicious content into the 'Xml' parameter to alter the email content of password reset messages.
Remediation
Users in SaaS mode have been automatically upgraded to version r12, which addresses this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.