Crater Invoice
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-55556 | Cri | 0.73 | 9.8 | 0.85 | Jan 7, 2025 | A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APP_KEY to achieve remote command execution on the server by manipulating the laravel_session cookie, exploiting arbitrary deserialization through the encrypted session data. The exploitation vector of this vulnerability relies on an attacker obtaining Laravel's secret APP_KEY, which would allow them to decrypt and manipulate session cookies (laravel_session) containing serialized data. By altering this data and re-encrypting it with the APP_KEY, the attacker could trigger arbitrary deserialization on the server, potentially leading to remote command execution (RCE). The vulnerability is primarily exploited by accessing an exposed cookie and manipulating it using the secret key to gain malicious access to the server. | ||
| CVE-2022-1032 | 0.00 | — | 0.00 | Mar 29, 2022 | Insecure deserialization of not validated module file in GitHub repository crater-invoice/crater prior to 6.0.6. | |||
| CVE-2022-1033 | 0.00 | — | 0.00 | Mar 23, 2022 | Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.6. | |||
| CVE-2022-0515 | 0.00 | — | 0.00 | Mar 21, 2022 | Cross-Site Request Forgery (CSRF) in GitHub repository crater-invoice/crater prior to 6.0.4. | |||
| CVE-2022-0514 | 0.00 | — | 0.00 | Mar 21, 2022 | Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5. | |||
| CVE-2022-0372 | 0.00 | — | 0.00 | Jan 27, 2022 | Cross-site Scripting (XSS) - Stored in Packagist bytefury/crater prior to 6.0.2. | |||
| CVE-2022-0203 | 0.00 | — | 0.00 | Jan 26, 2022 | Improper Access Control in GitHub repository crater-invoice/crater prior to 6.0.2. | |||
| CVE-2022-0242 | 0.00 | — | 0.00 | Jan 17, 2022 | Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0. | |||
| CVE-2021-4080 | 0.00 | — | 0.00 | Jan 12, 2022 | crater is vulnerable to Unrestricted Upload of File with Dangerous Type |
- risk 0.73cvss 9.8epss 0.85
A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the APP_KEY to achieve remote command execution on the server by manipulating the laravel_session cookie, exploiting arbitrary deserialization through the encrypted session data. The exploitation vector of this vulnerability relies on an attacker obtaining Laravel's secret APP_KEY, which would allow them to decrypt and manipulate session cookies (laravel_session) containing serialized data. By altering this data and re-encrypting it with the APP_KEY, the attacker could trigger arbitrary deserialization on the server, potentially leading to remote command execution (RCE). The vulnerability is primarily exploited by accessing an exposed cookie and manipulating it using the secret key to gain malicious access to the server.
- CVE-2022-1032Mar 29, 2022risk 0.00cvss —epss 0.00
Insecure deserialization of not validated module file in GitHub repository crater-invoice/crater prior to 6.0.6.
- CVE-2022-1033Mar 23, 2022risk 0.00cvss —epss 0.00
Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.6.
- CVE-2022-0515Mar 21, 2022risk 0.00cvss —epss 0.00
Cross-Site Request Forgery (CSRF) in GitHub repository crater-invoice/crater prior to 6.0.4.
- CVE-2022-0514Mar 21, 2022risk 0.00cvss —epss 0.00
Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5.
- CVE-2022-0372Jan 27, 2022risk 0.00cvss —epss 0.00
Cross-site Scripting (XSS) - Stored in Packagist bytefury/crater prior to 6.0.2.
- CVE-2022-0203Jan 26, 2022risk 0.00cvss —epss 0.00
Improper Access Control in GitHub repository crater-invoice/crater prior to 6.0.2.
- CVE-2022-0242Jan 17, 2022risk 0.00cvss —epss 0.00
Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.
- CVE-2021-4080Jan 12, 2022risk 0.00cvss —epss 0.00
crater is vulnerable to Unrestricted Upload of File with Dangerous Type