Weak Password Change Mechanism in kareadita/kavita
Aug 9th 2022
The user password change page, doesn't require knowledge of the existing password.
Proof of Concept
- 1 - Log in as a normal user
- 2 - Go to the User Dashboard page and click Password.
- 3 - Set a any new password.
- 4 - The password is changed successfully.
An attacker that gains access to an active user session, can change the account password without previous knowledge of the current password.