Weak Password Complexity - elggv6.3.3
嗯,用户让我帮忙总结一下这篇文章的内容,控制在100个字以内。首先,我需要仔细阅读用户提供的内容。看起来这是一篇安全漏洞的报告,标题是“Elgg - Lack of Password Complexity”,作者是Andrey Stoykov,版本是6.3.3,测试环境是Ubuntu 22.04。 文章中提到了HTTP请求和响应,特别是关于更改密码的部分。看起来攻击者能够设置一个简单的密码“Passw0rd!”,而系统并没有阻止这种情况。HTTP响应显示密码更改成功,并且状态码是302重定向,然后又返回200 OK,显示密码已更改。 所以,总结起来就是Elgg平台存在密码复杂度不足的问题,允许设置弱密码。我需要将这些信息浓缩到100字以内,并且不需要使用特定的开头语句。 可能会这样表达:Elgg 6.3.3版本存在密码复杂度不足漏洞,允许设置简单密码如“Passw0rd!”。作者Andrey Stoykov通过HTTP请求展示了攻击过程,并指出系统未实施有效的密码策略。 检查一下字数是否在限制内,并确保信息准确传达漏洞的核心问题。 </think> Elgg 6.3.3版本存在密码复杂度不足漏洞,允许设置简单密码如"Passw0rd!"。作者Andrey Stoykov通过HTTP请求展示了攻击过程,并指出系统未实施有效的密码策略。 2026-1-29 21:31:18 Author: seclists.org(查看原文) 阅读量:0 收藏
嗯,用户让我帮忙总结一下这篇文章的内容,控制在100个字以内。首先,我需要仔细阅读用户提供的内容。看起来这是一篇安全漏洞的报告,标题是“Elgg - Lack of Password Complexity”,作者是Andrey Stoykov,版本是6.3.3,测试环境是Ubuntu 22.04。 文章中提到了HTTP请求和响应,特别是关于更改密码的部分。看起来攻击者能够设置一个简单的密码“Passw0rd!”,而系统并没有阻止这种情况。HTTP响应显示密码更改成功,并且状态码是302重定向,然后又返回200 OK,显示密码已更改。 所以,总结起来就是Elgg平台存在密码复杂度不足的问题,允许设置弱密码。我需要将这些信息浓缩到100字以内,并且不需要使用特定的开头语句。 可能会这样表达:Elgg 6.3.3版本存在密码复杂度不足漏洞,允许设置简单密码如“Passw0rd!”。作者Andrey Stoykov通过HTTP请求展示了攻击过程,并指出系统未实施有效的密码策略。 检查一下字数是否在限制内,并确保信息准确传达漏洞的核心问题。 </think> Elgg 6.3.3版本存在密码复杂度不足漏洞,允许设置简单密码如"Passw0rd!"。作者Andrey Stoykov通过HTTP请求展示了攻击过程,并指出系统未实施有效的密码策略。 2026-1-29 21:31:18 Author: seclists.org(查看原文) 阅读量:0 收藏
Full Disclosure mailing list archives
From: Andrey Stoykov <mwebsec () gmail com>
Date: Sat, 24 Jan 2026 18:01:43 +0000
# Exploit Title: Elgg - Lack of Password Complexity # Date: 1/2026 # Exploit Author: Andrey Stoykov # Version: 6.3.3 # Tested on: Ubuntu 22.04 # Blog: https://msecureltd.blogspot.com/2026/01/friday-fun-pentest-series-48-weak.html // HTTP Request - Changing Password POST /action/usersettings/save HTTP/1.1 Host: elgg.local User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-GB,en;q=0.9 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 216 Origin: http://elgg.local Sec-GPC: 1 Connection: keep-alive Referer: http://elgg.local/settings/user/admin Cookie: Elgg=5ivi0vt1g9jqu1sju70hfnm0mc Upgrade-Insecure-Requests: 1 Priority: u=0, i __elgg_token=nIY_M_wh53bUxoHvuKO1YA&__elgg_ts=1769266299&username=admin&name=Admin+User&email_password=&email= admin () example com ¤t_password=[REDACTED]&password=Passw0rd%21&password2=Passw0rd%21&language=en&guid=46 // HTTP Response - Changing Password HTTP/1.1 302 Found Date: Sat, 24 Jan 2026 14:52:07 GMT Server: Apache/2.4.52 (Ubuntu) Cache-Control: must-revalidate, no-cache, no-store, private expires: Thu, 19 Nov 1981 08:52:00 GMT pragma: no-cache Location: http://elgg.local/settings/user/admin Vary: User-Agent Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=utf-8 Content-Length: 394 <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url=' http://elgg.local/settings/user/admin'"; /> <title>Redirecting to http://elgg.local/settings/user/admin</title> </head> <body> Redirecting to <a href="http://elgg.local/settings/user/admin";> http://elgg.local/settings/user/admin</a>. </body> </html> // HTTP Request - Changing Password - Following Redirect GET /settings/user/admin HTTP/1.1 Host: elgg.local User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-GB,en;q=0.9 Accept-Encoding: gzip, deflate, br Origin: http://elgg.local Sec-GPC: 1 Connection: keep-alive Referer: http://elgg.local/action/usersettings/save Cookie: Elgg=5ivi0vt1g9jqu1sju70hfnm0mc Upgrade-Insecure-Requests: 1 Priority: u=0, i // HTTP Response - Changing Password - Following Redirect HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 14:52:11 GMT Server: Apache/2.4.52 (Ubuntu) Cache-Control: must-revalidate, no-cache, no-store, private x-frame-options: SAMEORIGIN expires: Thu, 19 Nov 1981 08:52:00 GMT pragma: no-cache x-content-type-options: nosniff Vary: Accept-Encoding,User-Agent Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=utf-8 Content-Length: 27859 [...] <div class="elgg-message elgg-message-success"><div class="elgg-inner"><div class="elgg-body">Password changed</div></div></div> [...] _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
Current thread:
- Weak Password Complexity - elggv6.3.3 Andrey Stoykov (Jan 29)
文章来源: https://seclists.org/fulldisclosure/2026/Jan/29
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh