Two Factor Authentication Bypass - 2FAB
Description:
Two-factor authentication is a security measure that is provided by many sites to protect the user's account in case his/her credentials are compromised.
Replication Steps:
- Go to (Your Target Domain)
- Click on “Turn on Multi Factor Authentication"
- Enter the authorization code, before clicking on "verify", make intercept on in burp suite
- Capture/load request
- Do intercept >response to this request
- Copy the verified response to notepad, intercept off
- Go back to (Your Target Domain) and disable authentication.
- Click on "Turn on Multi Factor Authentication" again.
- Enter random authorization code(eg:123456), intercept on, load request, do intercept, respond to this request, click forward, replace and paste the previous verified response.
- Forward
(2FA is enabled hence it is vulnerable.)
Impact:
This is a severe vulnerability, I recommend accepting this and fix it as soon as possible, because users trust this site for extra protection while enabling 2FA, but if it can be bypassed so easily it will harm your reputation and will also be inconvenient for the user.
Kindly tell us to know if you need more information. We have also attached a PoC with this report.
Thank You