Skip to content

Access authorization code captcha vulnerability #13147

Closed
@xzajyjs

Description

@xzajyjs

There is a logic vulnerability in the verification code of the login interface

Is there an existing issue for this?

  • I have searched the existing issues

Can the issue be reproduced with the default theme (daylight/midnight)?

  • I was able to reproduce the issue with the default theme

Could the issue be due to extensions?

  • I've ruled out the possibility that the extension is causing the problem.

Describe the problem

After the front-end enters the correct verification code, the packet is captured and held, and then the current verification code can be used for unlimited replay attacks (the password can be cracked)

Step 1. Capture the packet

image-20241114170406421

Step 2. Use the same verification code to blast password

image-20241114170356960

Step 3. Find the correct password no need verifying the verification code

image-20241114170346964

Expected result

The current verification code lifecycle ends after each login attempt

Screenshot or screen recording presentation

No response

Version environment

- Version: All Versions
- Operating System: All Systems
- Browser (if used): All Browsers

Log file

No need.

More information

No response

Activity

88250

88250 commented on Nov 14, 2024

@88250
Member

Hi, do you mean the captch will not be reset?

xzajyjs

xzajyjs commented on Nov 14, 2024

@xzajyjs
Author

Yes

self-assigned this
on Nov 14, 2024
added this to the 3.1.12 milestone on Nov 14, 2024
88250

88250 commented on Nov 14, 2024

@88250
Member

Thanks for the feedback, I have been able to reproduce the issue and will fix it in the next version.

changed the title [-]There is a logic vulnerability in the verification code of the login interface[/-] [+]Access authorization code vulnerability[/+] on Nov 14, 2024
changed the title [-]Access authorization code vulnerability[/-] [+]Access authorization code captcha vulnerability[/+] on Nov 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

Labels

Type

No type

Projects

No projects

Relationships

None yet

    Development

    No branches or pull requests

      Participants

      @88250@xzajyjs

      Issue actions

        Access authorization code captcha vulnerability · Issue #13147 · siyuan-note/siyuan