IDOR on ProConf Peer-Review and Conference Management System

I

Description

In ProConf version <=6.0,  an Insecure Direct Object Reference (IDOR) allows any author to view & grab all submitted papers (Title & Abstract) and their authors personal information (Name, Email, Organization & Position) by changing value of Paper ID (param pid=xxxx).

Vendor Website
Proof-of-Concept

Step 1: Sign In as an author for a conference & submit a paper. You’ll get a paper ID.

Step 2: Now go to paper details and change the value of Paper ID (param pid=xxxx) to nearest previous value to view others submitted paper & authors information.

Disclosure Timeline
  • Issue Reported: July 19, 2018
  • Issue Resolved: August 12, 2018
  • Affected Version: <=6.0
  • Patched Version: 6.1
  • Blog Post Published: August 27, 2018
  • Applied for CVE: September 6, 2018
  • Assigned CVE ID: CVE-2018-16606

 

About Me
InfoSec Researcher & Penetration Tester
By Ziaur Rashid

Categories

Recent Posts