Improper Restriction of Excessive Authentication Attempts in babybuddy/babybuddy

Valid

Reported on

Jun 20th 2021


✍️ Description

Improper restriction at login portal which lets an attacker brute force user's accounts.

🕵️‍♂️ Proof of Concept

Video POC:
https://drive.google.com/file/d/1udzAGroSqDbEqPRYlUzv7bHgHq7oMNuk/view?usp=sharing

You will get 200 for incorrect as it opens the same page for login and 302 redirection when the password is correct hence it redirects to the next page gives us the password of the user.

💥 Impact

This vulnerability is capable of letting attackers brute force user accounts which leads to account compromise.

We have contacted a member of the babybuddy team and are waiting to hear back 6 months ago
Christopher Charbonneau Wells validated this vulnerability 6 months ago
x3rz has been awarded the disclosure bounty
The fix bounty is now up for grabs
Christopher Charbonneau Wells confirmed that a fix has been merged on 27ea84 6 months ago
Christopher Charbonneau Wells has been awarded the fix bounty