Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Unauthenticated Mautic Upgrade.php Exposure

By kannthu

High
Vidoc logoVidoc Module
#misconfig#unauth#mautic
Description

What is the "Unauthenticated Mautic Upgrade.php Exposure?" module?

The "Unauthenticated Mautic Upgrade.php Exposure" module is designed to detect a specific vulnerability in the Mautic software. Mautic is a marketing automation platform that allows businesses to manage their marketing campaigns and customer interactions. This module focuses on an unauthenticated exposure in the upgrade.php file, which can potentially lead to unauthorized access and exploitation of the Mautic system.

This vulnerability has been classified as high severity, indicating the potential for significant impact if exploited. The module was authored by huowuzhao.

Impact

If the "Unauthenticated Mautic Upgrade.php Exposure" vulnerability is successfully exploited, an attacker could gain unauthorized access to the Mautic system. This could lead to various consequences, such as unauthorized data access, modification, or deletion. Additionally, an attacker may be able to execute arbitrary code or perform other malicious activities within the compromised system.

How does the module work?

The module works by sending a specific HTTP request to the target system and then applying a set of matching conditions to determine if the vulnerability is present. The HTTP request is typically a GET request to the "/upgrade.php" path.

The module's matching conditions include:

- Checking the response body for specific keywords, such as "Upgrade Mautic" and "Click here to start upgrade". - Verifying that the response header contains the "text/html" content type. - Ensuring that the HTTP response status code is 200 (OK).

If all of these conditions are met, the module will report the vulnerability, indicating that the "Unauthenticated Mautic Upgrade.php Exposure" vulnerability is present in the target system.

It's important to note that this module is just one test case within the Vidoc platform, which utilizes multiple modules to perform comprehensive scanning and detection of various vulnerabilities, misconfigurations, and software fingerprints.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/upgrade.php
Matching conditions
word: Upgrade Mautic, Click here to start upgr...and
word: text/htmland
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability