Login Sign Up

CVE-2021-33484

7.5 HIGH
Authentication Bypass

📋 TL;DR

This vulnerability in OnyakTech Comments Pro 3.8 allows attackers to spoof user identities in comment systems. By decompiling the installer to discover hardcoded encryption values, attackers can encrypt arbitrary user IDs and usernames to impersonate other users when posting comments. All installations of Comments Pro 3.8 are affected.

💻 Affected Systems

Products:
  • OnyakTech Comments Pro
Versions: 3.8
Operating Systems: Windows
Default Config Vulnerable: ⚠️ Yes
Notes: The vulnerability exists in the default installation and configuration of the software.

📦 What is this software?

Onyaktech Comments Pro by Onyaktech Comments Pro Project

View all CVEs affecting Onyaktech Comments Pro →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers can impersonate any user, including administrators, to post malicious content, spread misinformation, or conduct social engineering attacks through the comment system.

🟠

Likely Case

Attackers impersonate regular users to post spam, phishing links, or inappropriate content while appearing as legitimate users.

🟢

If Mitigated

With proper monitoring and content moderation, malicious posts can be detected and removed, though identity spoofing remains possible.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires downloading and decompiling the installer, then using discovered values to craft requests.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://twitter.com/onyaktech

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available or implementing workarounds.

🔧 Temporary Workarounds

Implement server-side user validation

all

Add server-side checks that validate user sessions independently of encrypted parameters

Disable comment functionality

all

Temporarily disable the Comments Pro module until a fix is available

🧯 If You Can't Patch

  • Implement strict content moderation and review all comments before publication
  • Monitor for unusual comment patterns or multiple posts from the same IP with different user identities

🔍 How to Verify

Check if Vulnerable:

Check if running OnyakTech Comments Pro version 3.8 by examining the application files or configuration

Check Version:

Check the application directory for version information or consult the web interface

Verify Fix Applied:

Test if user impersonation is possible by attempting to post comments with encrypted parameters from other user accounts

📡 Detection & Monitoring

Log Indicators:

  • Multiple comment posts with different user IDs from same IP
  • Comments with mismatched user information

Network Indicators:

  • HTTP POST requests to CommentsService.ashx with manipulated encrypted parameters

SIEM Query:

source="web_server" AND uri="*CommentsService.ashx*" AND method="POST" | stats count by src_ip, user_agent

📊 Metadata

CVE ID: CVE-2021-33484
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-798
Published: September 7, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-33484, you might also want to check these:

CVE-2025-20188 10.0

This critical vulnerability in Cisco IOS XE Wireless LAN Controllers allows unauthenticated remote a...

Same vulnerability type (CWE-798)
CVE-2026-22769 10.0

Dell RecoverPoint for Virtual Machines versions before 6.0.3.1 HF1 contain hardcoded credentials tha...

Same vulnerability type (CWE-798)
CVE-2021-0248 10.0

This vulnerability involves hard-coded credentials in Juniper Junos OS on NFX Series devices, allowi...

Same vulnerability type (CWE-798)