Newgen OmniApp Information Disclosure Vulnerability Allowing Privileged Username Enumeration
Vulnerability
A vulnerability allowing unauthenticated information disclosure has been identified in Newgen OmniApp. This issue arises from a client-side JavaScript file, 'login.js', which is publicly accessible and contains hardcoded privileged usernames. Attackers can exploit this vulnerability to enumerate valid administrative usernames, facilitating targeted authentication attacks.
Impact
Exploitation of this vulnerability allows for the enumeration of valid privileged usernames, particularly administrative accounts, which could be used in targeted authentication attacks.
Reproduction
To reproduce this vulnerability, send an unauthenticated HTTP GET request to the '/omniapp/resources/scripts/login.js' endpoint. This request can be made using a web browser or a tool like curl or Postman. The response will include the hardcoded privileged usernames, which can then be used to identify valid administrative accounts.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.