Yahoo! Security Clearance Suggestions allows deleting 1.5 of millions of posts and comments

Ibrahim Raafat, an Egyptian researcher s, revealed a vulnerability in the ! Suggestions, που θα μπορούσε να αξιοποιηθεί από επιτιθέμενους για την 365,000 posts and 1,155,000 comments, posted by users on the page.

The expert found an Insecure Direct Object Reference Vulnerability (IDORV) vulnerability on Yahoo's website, Suggestions.yahoo.com. The bug could allow an attacker to elevate user privileges and gain access to the page's database ( database).

The researcher started by analyzing the requests sent when users post or delete a comment or topic. In the case of comments, the requests contained an ID parameter, the which was associated with each comment published on the website.

By changing the value of the parameter, the researcher found that he could delete any comment. In the case of posts, the ID parameter did not exist, so the expert added it on its own. Raafat then developed a script that allowed him to easily delete all the topics by changing IDs.

Raafat reported vulnerability to Yahoo, which was repaired within two days.

For more technical details, check it out Ibrahim Raafat's blog and the following POC video posted on YouTube:

Source: iguru.gr

iGuRu.gr The Best Technology Site in Greecefgns

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).