CVE-2017-5594

PageKit 1.0.10 - Password Reset

Time Line

Published

2024-03-19

Updated

2024-03-19

Firt exploit

2024-03-19

Overview

Descriptions (2)

NVD, NVD

CWE (1)

CWE-640: Weak Password Recovery Mechanism for Forgotten Password

CAPEC (-)

Risk

CVSS Score

7.5 High

SSVC

KEV

EPSS

1.7%

Affected Products (-)

Vendors (1)

pagekit

Products (1)

pagekit

Versions (1)

<= 1.0.10

Intel Resources (-)

Advisories (-)

Exploits (-)

Plugins (-)

References (5)

General (2)

securityfocus, securelayer7

Exploits & POcs (2)

exploit-db, securelayer7

Patches (1)

github

Advisories (-)

Summary

Descriptions

An issue was discovered in Pagekit CMS before 1.0.11. In this vulnerability the remote attacker is able to reset the registered user's password, when the debug toolbar is enabled. The password is successfully recovered using this exploit. The SecureLayer7 ID is SL7_PGKT_01.

Se descubrió un problema en Pagekit CMS en versiones anteriores a 1.0.11. En esta vulnerabilidad el atacante remoto es capaz de restablecer la contraseña del usuario registrado, cuando la barra de herramienta de depuración está habilitada. La contraseña se recupera con éxito utilizando este exploit. El ID de SecureLayer7 es SL7_PGKT_01.

*Credits: N/A

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-01-25 CVE Reserved
2017-01-25 CVE Published
2024-08-05 CVE Updated
2024-08-05 First Exploit
2025-01-20 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-640: Weak Password Recovery Mechanism for Forgotten Password

CAPEC

Threat Intelligence Resources (0)

Advisories (0)
Exploits (0)

Security Advisory details:

Select an advisory to view details here.

Select	Title	Date

Select an exploit to view details here.

References (5)

URL	Tag	Source
http://www.securityfocus.com/bid/95806	Third Party Advisory
https://securelayer7.net/download/pdf/SecureLayer7-Pentest-report-Pagekit-CMS.pdf	Technical Description

URL	Date	SRC
https://www.exploit-db.com/exploits/41143	2024-08-05
https://securelayer7.net/download/poc/password-reset-vulnerability-exploit-ruby-pagekit-cms.rb.txt	2024-08-05

URL	Date	SRC
https://github.com/pagekit/pagekit/commit/e0454f9c037c427a5ff76a57e78dbf8cc00c268b	2021-01-08

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Pagekit Search vendor "Pagekit"		Pagekit Search vendor "Pagekit" for product "Pagekit"				<= 1.0.10 Search vendor "Pagekit" for product "Pagekit" and version " <= 1.0.10"		-		Affected

CVE-2017-5594

PageKit 1.0.10 - Password Reset

Severity Score

Exploit Likelihood

Affected Versions

Public Exploits

Exploited in Wild

Decision

Summary

Descriptions

CVSS Scores

SSVC

Timeline

CWE

CAPEC

Threat Intelligence Resources (0)

References (5)

Affected Vendors, Products, and Versions