{"uuid": "244bc9ca-8c5a-45bd-8fa8-ba42905a16c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-5256", "type": "published-proof-of-concept", "source": "https://t.me/hackingbra/36", "content": "\u2620\ufe0fCache poisoning in Drupal core\n \nAccording to the CVE-2023-5256 disclosure, you can cache admin session cookies by causing a 4xx response when visiting a crafted URL in JSON:API.\n\nYou can lure an admin using a link, steal his session cookies and gain administrative access to the website. In this way, an attacker can completely compromise the confidentiality, integrity and availability of the website.\n\nPoC\n\n/jsonapi/user/user?filter[a-labex][condition][path]=cachingyourcookie\n\n#web #cve #cache #drupal", "creation_timestamp": "2023-10-08T03:13:38.000000Z"}