CVE-2024-7661 – This vulnerability allows attackers to perform ... (How to Fix)

Q: What is the severity of CVE-2024-7661?

CVE-2024-7661 has a CVSS score of 4.3 (MEDIUM). This vulnerability allows attackers to perform Cross-Site Request Forgery (CSRF) attacks against the Car Driving School Management System. Attackers can trick authenticated administrators into executing unauthorized actions, such as creating or modifying user accounts. The vulnerability affects all installations of version 1.0 that are exposed to untrusted networks.

📋 TL;DR

This vulnerability allows attackers to perform Cross-Site Request Forgery (CSRF) attacks against the Car Driving School Management System. Attackers can trick authenticated administrators into executing unauthorized actions, such as creating or modifying user accounts. The vulnerability affects all installations of version 1.0 that are exposed to untrusted networks.

💻 Affected Systems

Products:

SourceCodester Car Driving School Management System

Versions: 1.0

Operating Systems: Any

Default Config Vulnerable: ⚠️ Yes

Notes: All default installations are vulnerable. The system must have the admin/user/index.php file accessible.

📦 What is this software?

Car Driving School Management System by Oretnom23

View all CVEs affecting Car Driving School Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could create administrative accounts, modify existing user privileges, or delete critical user data by tricking an authenticated administrator into visiting a malicious webpage.

🟠

Likely Case

Attackers would create unauthorized user accounts or modify existing user permissions, potentially gaining persistent access to the system.

🟢

If Mitigated

With proper CSRF protections and user awareness, the impact is limited to failed exploitation attempts with no data compromise.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires the victim to be authenticated as an administrator and visit a malicious webpage. The exploit is publicly documented.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None known

Restart Required: No

Instructions:

No official patch available. Implement CSRF tokens in the save_users function of admin/user/index.php by adding unique tokens to forms and validating them on submission.

🔧 Temporary Workarounds

Implement CSRF Protection

all

Add CSRF tokens to all forms and validate them server-side

Edit admin/user/index.php to include CSRF token generation and validation

Restrict Admin Access

all

Limit admin panel access to specific IP addresses or networks

Add IP restrictions in .htaccess or web server configuration

🧯 If You Can't Patch

Implement strict SameSite cookie attributes for session cookies
Educate administrators to log out after sessions and avoid clicking untrusted links while authenticated

🔍 How to Verify

Check if Vulnerable:

Check if admin/user/index.php lacks CSRF token validation in form submissions

Check Version:

Check the system version in the admin panel or configuration files

Verify Fix Applied:

Verify that forms in the admin panel include unique CSRF tokens that are validated on the server

📡 Detection & Monitoring

Log Indicators:

Multiple user creation/modification requests from same IP without corresponding form submissions

Network Indicators:

HTTP POST requests to admin/user/index.php without Referer headers or with external origins

SIEM Query:

source="web_logs" AND uri="/admin/user/index.php" AND method="POST" AND (referer="" OR NOT referer CONTAINS "your-domain.com")

📊 Metadata

CVE ID: CVE-2024-7661

CVSS v3 Score: 4.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CWE: CWE-352

Published: August 12, 2024

Last Updated: August 15, 2024

🔗 References

https://github.com/BFS-Lab/BFSDV/blob/main/Sourcecodester%20Online%20Catering%20Reservation%20System%20CSRF-1.md Exploit
https://vuldb.com/?ctiid.274119 Permissions Required,VDB Entry
https://vuldb.com/?id.274119 Permissions Required,Third Party Advisory,VDB Entry
https://vuldb.com/?submit.388765 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-7661, you might also want to check these: