Improper Restriction of Excessive Authentication Attempts in babybuddy/babybuddy

Valid

Reported on

Jun 20th 2021


✍️ Description

Improper restriction at login portal which lets an attacker brute force user's accounts.

🕵️‍♂️ Proof of Concept

Video POC:
https://drive.google.com/file/d/1udzAGroSqDbEqPRYlUzv7bHgHq7oMNuk/view?usp=sharing

You will get 200 for incorrect as it opens the same page for login and 302 redirection when the password is correct hence it redirects to the next page gives us the password of the user.

💥 Impact

This vulnerability is capable of letting attackers brute force user accounts which leads to account compromise.

Occurrences

We have contacted a member of the babybuddy team and are waiting to hear back a year ago
Christopher Charbonneau Wells validated this vulnerability a year ago
x3rz has been awarded the disclosure bounty
The fix bounty is now up for grabs
Christopher Charbonneau Wells marked this as fixed with commit 27ea84 a year ago
Christopher Charbonneau Wells has been awarded the fix bounty
This vulnerability will not receive a CVE
to join this conversation