Taskosaur Improper Role Assignment Vulnerability in User Registration Process

A vulnerability exists in Taskosaur version 1.0.0, where the application fails to properly validate the role parameter during user registration. This flaw allows attackers to manually modify the request payload and assign themselves elevated privileges, specifically SUPER_ADMIN rights. The backend does not enforce restrictions on role assignments or disregard client-supplied role parameters, leading to the creation of accounts with full administrative privileges. Consequently, any unauthenticated attacker can register a highly privileged account.

Impact

Exploitation of this vulnerability allows an attacker to create an account with SUPER_ADMIN privileges, granting access to administrative endpoints and sensitive data.

Reproduction

To reproduce this vulnerability, register a new user account and intercept the registration request using a proxy tool like Burp Suite. Modify the request payload to include the role parameter set to SUPER_ADMIN, then forward the request. After the account is created, log in and verify the SUPER_ADMIN privileges.

Remediation

No specific patch is available, but developers are advised to consult the OWASP Mass Assignment Cheat Sheet for guidance on preventing similar vulnerabilities.