CVE-2023-29922
published 2023-04-19CVE-2023-29922: PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.
PriorityP340medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
EXPLOIT
EPSS
3.00%
85.7th percentile
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| powerjob | powerjob | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Unauthenticated POST request to /user/save endpoint with JSON body containing username, phone, email, and webHook fields indicates exploitation attempt of CVE-2023-29922 authentication bypass. ↗
- →Successful exploitation is confirmed when the HTTP 200 response body contains both '"success":true' and '"data":null' with Content-Type application/json. ↗
- →Shodan/FOFA fingerprinting queries for exposed PowerJob instances: search for html:"PowerJob" or body="powerjob" to identify attack surface. ↗
- ·The vulnerable endpoint is /user/save (mapped as /user/save via the 'create user/save interface'). The access control bypass requires no authentication (PR:N), meaning any unauthenticated network request can create users. ↗
- ·The Nuclei template targets exactly PowerJob version 4.3.1 (CPE: cpe:2.3:a:powerjob:powerjob:4.3.1). Detections should be scoped to this version. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
ghsa·2023-04-19
CVE-2023-29922 [MEDIUM] CWE-284 PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
PowerJob v4.9.3 is vulnerable to Incorrect Access Control via the create user/save interface.
OSV
PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
osv·2023-04-19
CVE-2023-29922 [MEDIUM] PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
PowerJob v4.9.3 is vulnerable to Incorrect Access Control via the create user/save interface.
No detection rules found.
Nuclei
PowerJob V4.3.1 - Authentication Bypass
nuclei·CVSS 5.3
CVE-2023-29922 [MEDIUM] PowerJob V4.3.1 - Authentication Bypass
PowerJob V4.3.1 - Authentication Bypass
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.
Template:
id: CVE-2023-29922
info:
name: PowerJob V4.3.1 - Authentication Bypass
author: Co5mos
severity: medium
description: |
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.
impact: |
Successful exploitation of this vulnerability could allow an attacker to bypass authentication and gain unauthorized access to the application.
remediation: |
Apply the latest security patch or upgrade to a patched version of PowerJob V4.3.1.
reference:
- https://github.com/PowerJob/PowerJob/issues/585
- https://nvd.nist.gov/vuln/detail/CVE-2023-29922
- https://github.com/CN016/Powerjob-CVE-2023-29922-
- https://github.com/nom
No writeups or analysis indexed.
2023-04-19
Published