Skip to content

Instantly share code, notes, and snippets.

@ipxsec

ipxsec/CVE-2023-51141.md

Last active February 28, 2024 08:13
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save ipxsec/1680d29c49fe368be81b037168175b10 to your computer and use it in GitHub Desktop.
Save ipxsec/1680d29c49fe368be81b037168175b10 to your computer and use it in GitHub Desktop.
Download ZIP
CVE-2023-51141
Raw
CVE-2023-51141.md

Information Disclosure - Internal Users

Description:

ZKTeko BioTime v.8.5.4 contains an affected endpoint that discloses employees data (name, employment ID, photo, etc) which can be accessed without authentication and authorization checks.

Impact

An attacker might use the disclosed information to gain a greater understanding of the systems and the employees and potentially develop further attacks targeted at the organization e.g. the attacker might use the employees usernames and IDs to gain access to different employees-only systems. Also, The attacker can leak those information to the internet.

Vulnerability path:

https://[org_domain]/personnel/api/employees/search_emp/?employee=&employee_icontains=1&page=1&page_size=10

Affected target

This vulnerability was tested and found on version 8.5.4

Proof of Concept (PoC)

Send a simple GET request to the following endpoint "/personnel/api/employees/search_emp/?employee=&employee_icontains=1&page=1&page_size=10" and the response will contain all employees data.

image

Discoverer

Abdullah Alqannam from Jahez International Company

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment