Tiki Wiki authentication bypass flaw gives attackers full control of websites, intranets

guest · Oct 29, 2020

Tiki Wiki authentication bypass flaw gives attackers full control of websites, intranets
Brute-force exploit hands over the keys to CMS admin accounts
October 27, 2020
https://portswigger.net/daily-swig/...-attackers-full-control-of-websites-intranets

A vulnerability in the popular Tiki Wiki CMS platform allowed an unauthenticated attacker to bypass the login process to gain remote access to admin accounts.

Tiki Wiki is an open source, wiki-based content management system (CMS) for websites and intranet sites that’s said to have been downloaded more than a million times since its launch 18 years ago.
A security researcher has detailed how an authentication bypass vulnerability in the platform could be leveraged to gain full control of a target account.

Detailing his findings in a GitHub post, Maximilian Barz, aka ‘Silky’, said that, in Tiki Wiki versions prior to 21.2, an attacker is able to brute-force a Tiki Wiki admin account until it is locked after 50 invalid login attempts.
Click to expand...

“The attacker is able to compromise the administrator account so it’s possible to control the whole CMS,” Barz told The Daily Swig.
“If schedulers are used, it’s even possible to execute code on the system itself.”

This vulnerability (CVE-2020-15906) was assigned a CVSS score of 9.3 out of 10.
It has since been patched by Tiki Wiki. Users are advised to upgrade to the latest version (21.2). Security fixes have also been rolled out for other branches.
Click to expand...

Log in or Sign up

Tiki Wiki authentication bypass flaw gives attackers full control of websites, intranets

guest Guest

Log in or Sign up

Tiki Wiki authentication bypass flaw gives attackers full control of websites, intranets

guest Guest

Useful Searches