CVE-2024-11680

Warnung

Exploit

EPSS 91.56%
Veröffentlicht 26.11.2024 10:15:04
Zuletzt bearbeitet 31.10.2025 21:56:27
Quelle disclosure@vulncheck.com
CVE-Watchlists
Login
Unerledigt
Login

ProjectSend Unauthenticated Configuration Modification

ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability. Remote, unauthenticated attackers can exploit this flaw by sending crafted HTTP requests to options.php, enabling unauthorized modification of the application's configuration. Successful exploitation allows attackers to create accounts, upload webshells, and embed malicious JavaScript.

Betroffene Produkte Warnungen 1 Metriken 3 CWE 1 Referenzen 9

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Projectsend ≫ Projectsend Version < r1720

03.12.2024: CISA Known Exploited Vulnerabilities (KEV) Catalog

ProjectSend Improper Authentication Vulnerability

Schwachstelle

ProjectSend contains an improper authentication vulnerability that allows a remote, unauthenticated attacker to enable unauthorized modification of the application's configuration via crafted HTTP requests to options.php. Successful exploitation allows attackers to create accounts, upload webshells, and embed malicious JavaScript.

Beschreibung

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	91.56%	0.998

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
disclosure@vulncheck.com	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/projectsend-auth-bypass.yaml

Third Party Advisory

Broken Link

https://github.com/projectsend/projectsend/commit/193367d937b1a59ed5b68dd4e60bd53317473744

Patch

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/projectsend_unauth_rce.rb

Exploit

https://vulncheck.com/advisories/projectsend-bypass

Third Party Advisory

https://www.synacktiv.com/sites/default/files/2024-07/synacktiv-projectsend-multiple-vulnerabilities.pdf

Third Party Advisory

Mitigation

Technical Description

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-11680

US Government Resource

https://nvd.nist.gov/vuln/detail/CVE-2024-11680

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-11680

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-11680

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-11680

03.12.2024: CISA Known Exploited Vulnerabilities (KEV) Catalog