Main Vulnerability Database Vulnerabilities #VU27476

#VU27476 Input validation error in Bitrix Site Manager

Published: May 1, 2020 / Updated: May 13, 2020

Vulnerability identifier: #VU27476

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/U:Green

CVE-ID: N/A

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Bitrix Site Manager

Software vendor:
Bitrix

Description

The vulnerability allows a remote attacker to bypass web application firewall.

The vulnerability exists due to insufficient validation of user-supplied input when processing NULL byte character within the Proactive Protection module version 19.0.0 and below in Bitrix Site Manager. A remote attacker can pass specially crafted input to the application that contains a NULL byte (%00) and bypass Web Application Firewall rules.

Vulnerable code:

	
	
	Not loaded

PoC Request:

	http://[host]/?test=tetsBYPASS%00")});alert(1);$(document).ready(function (){%2f%2f

Remediation

Install update from vendor's website.

Update Proactive Protection module to version 20.0.0.

External links

https://blog.deteact.com/bitrix-waf-bypass/

#VU27476 Input validation error in Bitrix Site Manager

Description

Remediation

External links

Please verify you're human