OpenText Project

We Found 2bugs in this portal Password reset link and Session Expiry.

Scroll

Image

Project Bugs Absence of the MTA-STS record in the DNS response

Application-level Denial of Service (DOS) Vulnerability

Hyperlink injection

No Length Restrictions on Phone Number Field

xmlrpc.php FILE IS enabled

Client OpenText
Project Description Vulnerability: Absence of MTA-STS Record

Description: The Mail Transfer Agent Strict Transport Security (MTA-STS) is missing from the DNS configuration for opentext.com. MTA-STS helps prevent Man-in-the-Middle (MitM) attacks by enforcing TLS encryption for email traffic.

Solution: Add an MTA-STS DNS record to enforce encrypted email communications.

Vulnerability: Application-Level Denial of Service (DoS)

Location: blogs.opentext.com

Description:

A large number of scripts can be loaded from the admin URL, resulting in excessive server resource consumption when exploited.

Solution: Implement rate limiting, restrict access to admin paths, and optimize script loading to reduce server load.

Vulnerability: Hyperlink Injection in Email Verification

Description: Improper input validation allows attackers to inject malicious hyperlinks into the email verification process, redirecting users to harmful sites.

Solution: Sanitize user inputs to prevent hyperlink injection and ensure that email content is properly validated.

Vulnerability: No Length Restrictions on Phone Number Field

Description: The phone number input field accepts excessively long strings without validation, making it prone to buffer overflow attacks.

Solution: Enforce length restrictions on the phone number field to prevent overly long inputs.

Vulnerability: XMLRPC.php Enabled

Description: The XMLRPC endpoint is enabled, which can be exploited for brute-force attacks and DDoS attacks through methods like pingbacks and system calls.

Solution: Disable XMLRPC.php if not needed, or secure it with additional measures like authentication and rate limiting.

EasyDMARC: For checking DNS configurations and MTA-STS records.

Burp Suite: For intercepting and analyzing web traffic, testing input fields, and validating vulnerabilities.