Skip to content

Write UP - Langskip

Django debug port active

Write UP - Langskip

Projet de Side Quest pour l'Ecole 2600
0xL4ughCTF
0xL4ughCTF
- OSINT
  OSINT
- Reverse Engineering
  Reverse Engineering
  - L4ugh CTF 2024 : easylogin
- Crypto
  Crypto
  - RSA GCD
- Web
  Web
  - L4ugh CTF 2024 : Micro
404CTF
404CTF
- Forensic
  Forensic
  - Le tir aux logs
- Pwn
  Pwn
  - Pseudoverflow
- Steganographie
  Steganographie
  - L'absence
- Web
  Web
AmsiCTF
AmsiCTF
- Crypto
  Crypto
  - Destruction
  - Prime suspects
BITskriegCTF
BITskriegCTF
- Pwn
  Pwn
  - MogamBro's Certainty Principle
- Reverse
  Reverse
  - Baby-rev
Bluehens
Bluehens
- Crypto
  Crypto
  - XS6 - CTR mode is just XOR
BraekerCTF
BraekerCTF
- Pwn
  Pwn
  - Embryobot
- Reverse
  Reverse
  - Binary shrink
- Web
  Web
  - Empty-execution
  - Stuffy
BreizhCTF
BreizhCTF
- Web
  Web
  - NginFail
CatTheFlag
CatTheFlag
- Web
  Web
  - Infection Web 1
CryptoHack
CryptoHack
DefCampCTF
DefCampCTF
- Crypto
  Crypto
  - ctr
GlacierCTF
GlacierCTF
- Blockchain
  Blockchain
  - GlacierCTF 2024 - Frozen in time
GreHackCTF
GreHackCTF
- Pwn
  Pwn
  - BabyPwn
HTB
HTB
- Box
  Box
  - Blue
- Crypto
  Crypto
  - Exciting Outpost Recon
- WEB
  WEB
  - Dynamic path
Hackday qualifs
Hackday qualifs
- Crypto
  Crypto
  - Baby Crypto
- Forensic
  Forensic
  - Baby Forensic
  - Blueprint Mirage
- MISC
  MISC
  - The Trap Fish
- Reverse
  Reverse
  - Oh my PAM
Hacktheboo
Hacktheboo
- Crypto
  Crypto
  - Hybrid Unifier
Hackvens
Hackvens
- Forensics
  Forensics
  - Analyse me
HeroCTF
HeroCTF
- Pwn
  Pwn
  - Heappie
- Crypto
  Crypto
  - HeroCTF v6 - Halloween
  - HeroCTF v6 - Interpolation
JerseyCTF
JerseyCTF
- MISC
  MISC
- OSINT
  OSINT
PatriotCTF
PatriotCTF
- Misc
  Misc
  - Let's play hide & seek
  - Making Baking Pancakes
PurplePillCTF
PurplePillCTF
- Crypto
  Crypto
  - Legend
Ringzer0CTF
Ringzer0CTF
- Web
  Web
WOCSA
WOCSA
- Web
  Web
  - CSRF multiple vulnerabilities
  - Django - guessable token
  - IDOR
  - RCE through Deserialization
  - SQL Injection
  - Django - SSTI
  - XSS from Tutorial Title
  - XXE
  - Django debug port active Django debug port active
    Table of contents
    
    Description
    
    Enoncé
    
    Solution détaillée
    
    Exploitation
    
    PoC
    
    Risk
    
    Remediation
  - Predictable Reset Token

Django debug port active

Description

Write Up: Guillaume
Créateur: WOCSA
Difficulté: Inconnu

Enoncé

Deploying a Django application with ‘Debug = True’ in a production environment is risky. It exposes sensitive information and could potentially allow attackers to gather details about your application’s structure, such as database schema or internal code. This can be a security risk as attackers might exploit these vulnerabilities to compromise the system. Therefore, it’s crucial to set ‘Debug = False’ in production to enhance security.

Solution détaillée

Exploitation

Description of each of the exploitation steps

PoC

Reach http://wg2d3m2w.3xploit.me/reset_password/ without account would trigger an error on django because of Debug = True, there is many endpoint that send a debug to a user

Risk

These error can be used by attacker to get recon and informations, like full path discolure, env, source code ....

Remediation

Disable Debug = True