CVE-2024-11680 Information

Description

ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability. Remote unauthenticated attackers can exploit this flaw by sending crafted HTTP requests to options.php enabling unauthorized modification of the application’s configuration. Successful exploitation allows attackers to create accounts upload webshells and embed malicious JavaScript.

Reference

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/projectsend-auth-bypass.yaml https://github.com/projectsend/projectsend/commit/193367d937b1a59ed5b68dd4e60bd53317473744 https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/projectsend_unauth_rce.rb https://vulncheck.com/advisories/projectsend-bypass https://www.synacktiv.com/sites/default/files/2024-07/synacktiv-projectsend-multiple-vulnerabilities.pdf