Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Tokens in CTFd used for account activation and password resetting can be used interchangeably for these operations. When used, they are sent to the server as a GET parameter and they are not single use, which means, that during token expiration time an on-path attacker might reuse such a token to change user's password and take over the account. Moreover, the tokens also include base64 encoded user email. This issue impacts releases up to 3.7.4 and was addressed by pull request 2679 https://github.com/CTFd/CTFd/pull/2679 included in 3.7.5 release.
CVSS Information
N/A
Vulnerability Type
CWE-837
Vulnerability Title
CTFd 安全漏洞
Vulnerability Description
CTFd是CTFd开源的一个 Capture The Flag 框架。 CTFd 3.7.4及之前版本存在安全漏洞,该漏洞源于账户激活和密码重置的令牌可以互换使用,允许在令牌过期时间内,中间人攻击者可重用此类令牌更改用户密码并接管账户。
CVSS Information
N/A
Vulnerability Type
N/A