Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2019-18818

Published: 07/11/2019 Updated: 20/02/2022
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 670
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Strapi

Vulnerability Summary

strapi prior to 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/strapi-plugin-users-permissions/controllers/Auth.js.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

strapi strapi

strapi strapi 3.0.0

Vendor Advisories

Check Point Security Alerts: Strapi Authentication Bypass (CVE-2019-18818)
Check Point Reference: CPAI-2019-3140 Date Published: 18 Jan 2024 Severity: Critical ...

Exploits

Exploit DB: Strapi CMS 3.0.0-beta.17.4 Remote Code Execution
Strapi CMS version 300-beta174 authenticated remote code execution exploit ...
Exploit DB: Strapi 3.0.0-beta Authentication Bypass
Strapi version 300-beta set password authentication bypass exploit ...
Exploit DB: Strapi CMS 3.0.0-beta.17.4 Privilege Escalation
This Metasploit module exploits the mishandling of a password reset in JSON for Strapi CMS version 300-beta174 to change the password of a privileged user ...

Github Repositories

https://github.com/0xaniketB/HackTheBox-Horizontall

Horizontall - StrAPI - Laravel Synopsis “Horizontall” is marked as easy difficulty machine which features multiple SSH and Nginx service VHOST is enabled on the server and it is running Beta version of StraAPI application and it has multiple vulnerabilities We gain access StrAPI application dashboard via exploiting a bug in access control and then gain shell acce

https://github.com/codiobert/codiobert

Hi 👋, I'm David Anglada A passionate developer from Barcelona I'm currently working at Kumux as VP of Engineering I work every day to improve and be a better professional When I'm not developing I'm always reading technology blogs and practicing my Ethical Hacking skills, visit my Hack The Box Profile Of course I also take care of my hea

https://github.com/Anogota/Horizontall

1How many TCP ports are open on this target? First we need what's going on the server, what kind of port are open, and ofc what we can exploit :) We can see there nothing intresting, only 22 SSH and 80 HTTP 2Using the Developer Tools in a browser we can see 'appc68eb462js' being loaded in the Network tab What is the additional subdomain that is exposed in t

https://github.com/rasyidfox/CVE-2019-18818

CVE-2019-18818 Usage : <admin_email> url <new_password> Reference : cvemitreorg/cgi-bin/cvenamecgi?name=CVE-2019-18818 thatsn0tmysitewordpresscom/2019/11/15/x05/

https://github.com/guglia001/CVE-2019-18818

CVE-2019-18818 Strapi <= 300-beta exploit POC

https://github.com/daltonmeridio/WriteUpHorizontall

WriteUp Horizontall Horizontall es una máquina Linux de fácil dificultad donde solo están expuestos los servicios HTTP y SSH La enumeración del sitio web revela que está construido utilizando el marco Vue JS Al revisar el código fuente del archivo Javascript, se descubre un nuevo host virtual Este host cont

https://github.com/glowbase/CVE-2019-19609

Strapi CMS 3.0.0-beta.17.4 - Unauthenticated Remote Code Execution (CVE-2019-18818, CVE-2019-19609)

Strapi CMS Exploit This exploit targets two vulnerabilities in the Strapi CMS Framework version 300-beta-174 allowing for unauthenticated remote code execution (RCE)   Vulnerabilities CVE-2019-18818 Weak Password Recovery Mechanism for Forgotten Password CVSS: 98 - Critical More details: nvdnistgov/vuln/detail/CVE-2019-18818 CVE-2019-19609 Improper Neutr

https://github.com/hadrian3689/strapi_cms_3.0.0-beta.17.7

CVE-2019-18818/19606 Strapi RCE

Strapi CMS CVE-2019-18818 and 19606 Blind Remote Code Execution of Strapi CMS Version 300-beta177 and earlier to get reverse shell Getting Started Executing program Using python3 python3 strapi_exppy -t strapihack/ -e fake@emailcom -p new_password -lhost 127001 -lport 9001 Help Help prompt python3 strapi_exppy -h

References

CWE-640https://github.com/strapi/strapi/releases/tag/v3.0.0-beta.17.5https://github.com/strapi/strapi/pull/4443https://www.npmjs.com/advisories/1311http://packetstormsecurity.com/files/163939/Strapi-3.0.0-beta-Authentication-Bypass.htmlhttp://packetstormsecurity.com/files/163950/Strapi-CMS-3.0.0-beta.17.4-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/165896/Strapi-CMS-3.0.0-beta.17.4-Privilege-Escalation.htmlhttps://nvd.nist.govhttps://github.com/0xaniketB/HackTheBox-Horizontallhttps://github.com/glowbase/CVE-2019-19609https://packetstormsecurity.com/files/163950/Strapi-CMS-3.0.0-beta.17.4-Remote-Code-Execution.htmlhttps://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2019-3140.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-1183hard-codedCVE-2024-28254CVE-2023-43790buffer overflowbypassCVE-2024-32633CVE-2024-1874CVE-2024-23558
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook