Create multiple user with the same username (Race Condition) in it-novum/openitcockpit


Reported on

Jun 4th 2023


Administrator users can create multiple users with the same username which breaks the logic of the web application.

Proof of Concept

Step 1: At Administration>User Management>Manager User Screen, click on "New Local User" button

Step 2: Fill in all the required fields, notice that the email is

Step 3: Intercept the above request

Step 4: Send the request to "Intruder", set payload position as image below

Step 5: Set the number of payloads to 100

Step 6: Set the concurrent requests to 30 and click "Start attack"

Step 7: 30 requests creating the user with the username "" will be sent at the same time. Looking at the result, we can see there are 3 users with the username "pentest@gmail" created.

Step 8: Send the request again and see that it fails because the user "" was created before, which means by default, it is unacceptable that 2 users with the same username in this system.

Step 8: Go to the User Management screen to confirm that.


When a race condition occurs during the creation of multiple users with the same username, it can result in data inconsistencies and authentication problems. Concurrent processes may overwrite or corrupt user data, leading to difficulties in identifying and distinguishing users, compromising security, and creating usability challenges.

We are processing your report and will contact the it-novum/openitcockpit team within 24 hours. 4 months ago
tuannq2299 modified the report
4 months ago
We created a GitHub Issue asking the maintainers to create a 4 months ago
We have contacted a member of the it-novum/openitcockpit team and are waiting to hear back 4 months ago
We have sent a follow up to the it-novum/openitcockpit team. We will try again in 7 days. 3 months ago
it-novum/openitcockpit maintainer gave praise 3 months ago
The researcher's credibility has slightly increased as a result of the maintainer's thanks: +1
it-novum/openitcockpit maintainer validated this vulnerability 3 months ago
tuannq2299 has been awarded the disclosure bounty
The fix bounty is now up for grabs
The researcher's credibility has increased: +7
it-novum/openitcockpit maintainer marked this as fixed in 4.6.5 with commit 2c2c24 3 months ago
The fix bounty has been dropped
This vulnerability has been assigned a CVE
it-novum/openitcockpit maintainer published this vulnerability 3 months ago
it-novum/openitcockpit maintainer
3 months ago


Hello, we have released openITCOCKPIT 4.6.5 which resolves the reported vulnerability. We have also mentioned your name and GitHub profile in our recent blog post.

We have added the vulnerability to our list of all reported vulnerabilities

Many thanks for your support.

to join this conversation