CVE-2024-54818 – CVE-2024-54818 is an incorrect access control v... (How to Fix)

📋 TL;DR

CVE-2024-54818 is an incorrect access control vulnerability in SourceCodester Computer Laboratory Management System 1.0 that allows unauthorized access to administrative functions via the /php-lms/admin/?page=user/list endpoint. This affects all organizations using this specific version of the software without proper access controls implemented.

💻 Affected Systems

Products:

SourceCodester Computer Laboratory Management System

Versions: 1.0

Operating Systems: Any OS running PHP web server

Default Config Vulnerable: ⚠️ Yes

Notes: Affects default installation without additional access control hardening.

📦 What is this software?

Computer Laboratory Management System by Oretnom23

View all CVEs affecting Computer Laboratory Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers gain full administrative control over the laboratory management system, allowing them to modify user accounts, access sensitive data, or disrupt laboratory operations.

🟠

Likely Case

Unauthorized users access administrative functions to view or modify user lists, potentially exposing sensitive information or creating unauthorized accounts.

🟢

If Mitigated

Proper access controls prevent unauthorized access, limiting impact to legitimate administrative functions only.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires understanding of the application's access control mechanisms and endpoint structure.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified in available references

Vendor Advisory: Not available in provided references

Restart Required: No

Instructions:

1. Check SourceCodester website for security updates
2. Apply any available patches for version 1.0
3. Verify access controls are properly implemented

🔧 Temporary Workarounds

Implement Proper Access Controls

all

Add authentication and authorization checks to the /php-lms/admin/ endpoint

Restrict Admin Access

web_server

Use web server configuration to restrict access to admin endpoints to authorized IPs only

# Apache: Order deny,allow
Deny from all
Allow from 192.168.1.0/24
# Nginx: allow 192.168.1.0/24;
deny all;

🧯 If You Can't Patch

Implement network segmentation to isolate the vulnerable system
Deploy a web application firewall (WAF) with access control rules

🔍 How to Verify

Check if Vulnerable:

Attempt to access /php-lms/admin/?page=user/list without proper authentication to see if access is granted

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Verify that unauthorized access attempts to the admin endpoint are properly blocked

📡 Detection & Monitoring

Log Indicators:

Unauthorized access attempts to /php-lms/admin/ endpoints
Multiple failed authentication attempts followed by successful admin access

Network Indicators:

HTTP requests to /php-lms/admin/?page=user/list from unauthorized IPs

SIEM Query:

source="web_server" AND uri="/php-lms/admin/*" AND (response_code=200 OR response_code=302) AND NOT user="admin_user"

📊 Metadata

CVE ID: CVE-2024-54818

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-281

EPSS Score: 0.16% exploit probability (37.2th percentile)

Published: January 8, 2025

Last Updated: April 16, 2025

🔗 References

https://github.com/CloseC4ll/vulnerability-research/tree/main/CVE-2024-54818 Third Party Advisory
https://portswigger.net/web-security/access-control#how-to-prevent-access-control-vulnerabilities Not Applicable

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-54818, you might also want to check these: