Code-Projects Laundry System Missing Authentication Vulnerability
Vulnerability
A critical vulnerability has been identified in Code-Projects Laundry System version 1.0. The issue resides in the '/data/' directory, where sensitive endpoints lack proper authentication checks. This flaw allows remote access to privileged functionalities and restricted data without valid credentials, potentially leading to a complete system compromise. The vulnerability arises from inadequate access controls, enabling URL manipulation to bypass authentication and exploit sensitive features.
Impact
Exploitation of this vulnerability could result in unauthorized access to sensitive data, modification of system settings, privilege escalation, or execution of administrative tasks without authentication.
Reproduction
The vulnerability can be reproduced by sending a request to any endpoint under '/data/' except for 'user_login.php' and 'change_pass.php'. For example, accessing 'all_types.php' or 'insert_laundry.php' without authentication will demonstrate the flaw. The 'insert_laundry.php' endpoint can be exploited by sending a POST request with specific data, such as customer information, priority, weight, and laundry type.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.