Benner ModernaNet Cross-Site Request Forgery Vulnerability in Password Change Function
Vulnerability
A cross-site request forgery (CSRF) vulnerability has been identified in Benner ModernaNet versions through 1.1.0. This vulnerability allows an attacker to change the password of any user currently logged into the system, without their consent. The issue arises in the password change file '/DadosPessoais/SG_AlterarSenha', where the application fails to properly verify if a request was intentionally made by the user. The vulnerability can be exploited remotely and does not require authentication, although it does need some form of user interaction.
Impact
Exploitation of this vulnerability allows for unauthorized actions to be performed on behalf of an authenticated user, potentially leading to account takeover.
Reproduction
To reproduce this vulnerability, an attacker can create a malicious webpage that automatically submits a password change request to the vulnerable endpoint '/DadosPessoais/SG_AlterarSenha'. This request must include the 'novaSenha' parameter, which specifies the new password. When a victim who is logged into the application visits the malicious page, their password will be changed without their knowledge or consent.
Remediation
Users are advised to upgrade to Benner ModernaNet version 1.1.1, which addresses this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.