Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Horilla HR has 2FA Bypass through its OTP Handling Logic
Vulnerability Description
Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the OTP handling logic has a flawed equality check that can be bypassed. When an OTP expires, the server returns None, and if an attacker omits the otp field from their POST request, the user-supplied OTP is also None, causing the comparison user_otp == otp to pass. This allows an attacker to bypass two-factor authentication entirely without ever providing a valid OTP. If administrative accounts are targeted, it could lead to compromise of sensitive HR data, manipulation of employee records, and further system-wide abuse. This issue has been fixed in version 1.5.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
认证机制不恰当
Vulnerability Title
Horilla 授权问题漏洞
Vulnerability Description
Horilla是Horilla公司的一款免费的开源人力资源软件。 Horilla 1.4.0版本存在授权问题漏洞,该漏洞源于OTP处理逻辑中的相等性检查存在缺陷,可能导致完全绕过双因素身份验证。
CVSS Information
N/A
Vulnerability Type
N/A