-
Type:
Change Request
-
Status:
Closed
-
Priority:
Medium
-
Resolution:
Done
-
-
-
Module:
BenAdmin
- Security
-
-
Item State:
Production Complete
- Closed
-
Issue Importance:
Must Have
-
Vulnerability Description:
WORKTERRA provides an interface for sending emails to administrators and WORKTERRA's customer support system. The backend does not rate-limit or validate the destination of these emails.
Impact:
A malicious user could use WORKTERRA servers as a spam delivery platform.
Verification and Attack Information:
Praetorian verified this finding by intercepting requests to the endpoint responsible for sending emails. A malicious user can modify the destination email address to any email address. Additionally, there are no controls in place to the number of emails sent within a given time frame. This finding was demonstrated by sending 50 emails to a test email account. The figure below shows that the emails are originating from WORKTERRA IP addresses.
Recommendation:
Validate the email's destination address on the server-side. Additionally, WORKTERRA should limit the number of emails that a user can send per-minute.
- relates to
-
ST-211
Restrict domain user for emails
-
-
Closed
{"report":{"apdex":1,"isInitial":true,"journeyId":"36a1751e-1b8f-42b1-8a20-36bb1cd358c0","key":"jira.project.issue.view-issue","navigationType":0,"readyForUser":738.1999999880791,"redirectCount":0,"resourceLoadedEnd":742.1999999880791,"resourceLoadedStart":132.29999995231628,"resourceTiming":[{"duration":167,"initiatorType":"link","name":"https://jira.workterra.net/s/3003653444a1e1a85555cab7dcfb3a21-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/2e46d90b5cae895c9c38649c9d510130/_/download/contextbatch/css/_super/batch.css","startTime":132.29999995231628,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":132.29999995231628,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":299.2999999523163,"responseStart":0,"secureConnectionStart":0},{"duration":166.80000001192093,"initiatorType":"link","name":"https://jira.workterra.net/s/dd6a0911920485696ac20493290df627-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/3abe50d469404b639745df44b51476b6/_/download/contextbatch/css/jira.browse.project,jira.view.issue,project.issue.navigator,jira.global,atl.general,-_super/batch.css?agile_global_admin_condition=true&jag=true&jira.create.linked.issue=true&richediton=true","startTime":132.5999999642372,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":132.5999999642372,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":299.39999997615814,"responseStart":0,"secureConnectionStart":0},{"duration":166.80000001192093,"initiatorType":"link","name":"https://jira.workterra.net/s/d41d8cd98f00b204e9800998ecf8427e-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/8.5.0/_/download/batch/com.atlassian.auiplugin:split_aui.pattern.label/com.atlassian.auiplugin:split_aui.pattern.label.css","startTime":132.5999999642372,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":132.5999999642372,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":299.39999997615814,"responseStart":0,"secureConnectionStart":0},{"duration":166.70000004768372,"initiatorType":"link","name":"https://jira.workterra.net/s/bd548f27bbf8f278bd83b60dd3284ed8-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/1.0/_/download/batch/jira.webresources:global-static-adgs/jira.webresources:global-static-adgs.css","startTime":132.79999995231628,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":132.79999995231628,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":299.5,"responseStart":0,"secureConnectionStart":0},{"duration":166.69999998807907,"initiatorType":"link","name":"https://jira.workterra.net/s/70725731a158a7140f19ddbd4201ba27-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/1.0/_/download/batch/jira.webresources:global-static/jira.webresources:global-static.css","startTime":132.89999997615814,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":132.89999997615814,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":299.5999999642372,"responseStart":0,"secureConnectionStart":0},{"duration":176.0999999642372,"initiatorType":"script","name":"https://jira.workterra.net/s/f2623af22c15df767ec6ff268ae0b8bd-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/2e46d90b5cae895c9c38649c9d510130/_/download/contextbatch/js/_super/batch.js?locale=en-US","startTime":133,"connectEnd":133,"connectStart":133,"domainLookupEnd":133,"domainLookupStart":133,"fetchStart":133,"redirectEnd":0,"redirectStart":0,"requestStart":133,"responseEnd":309.0999999642372,"responseStart":309,"secureConnectionStart":133},{"duration":211.4000000357628,"initiatorType":"script","name":"https://jira.workterra.net/s/6ce676f2a5bcc9651cef6e7956f05def-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/3abe50d469404b639745df44b51476b6/_/download/contextbatch/js/jira.browse.project,jira.view.issue,project.issue.navigator,jira.global,atl.general,-_super/batch.js?agile_global_admin_condition=true&jag=true&jira.create.linked.issue=true&locale=en-US&richediton=true","startTime":133.0999999642372,"connectEnd":133.0999999642372,"connectStart":133.0999999642372,"domainLookupEnd":133.0999999642372,"domainLookupStart":133.0999999642372,"fetchStart":133.0999999642372,"redirectEnd":0,"redirectStart":0,"requestStart":133.0999999642372,"responseEnd":344.5,"responseStart":344.5,"secureConnectionStart":133.0999999642372},{"duration":214.39999997615814,"initiatorType":"script","name":"https://jira.workterra.net/s/ecf7ec549751ae117b778f0525d6d371-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/4.1.5/_/download/resources/com.atlassian.plugins.atlassian-chaperone:hotspot-tour/hotspot-tour.js?batch=false&locale=en-US","startTime":133.19999998807907,"connectEnd":133.19999998807907,"connectStart":133.19999998807907,"domainLookupEnd":133.19999998807907,"domainLookupStart":133.19999998807907,"fetchStart":133.19999998807907,"redirectEnd":0,"redirectStart":0,"requestStart":133.19999998807907,"responseEnd":347.5999999642372,"responseStart":347.5999999642372,"secureConnectionStart":133.19999998807907},{"duration":214.60000002384186,"initiatorType":"script","name":"https://jira.workterra.net/s/6aa3fcf1fac5fd551eee0b69077524e6-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/aae1242f5fc81cc6a5bb8bc963ccda29/_/download/contextbatch/js/atl.global,-_super/batch.js?locale=en-US","startTime":133.29999995231628,"connectEnd":133.29999995231628,"connectStart":133.29999995231628,"domainLookupEnd":133.29999995231628,"domainLookupStart":133.29999995231628,"fetchStart":133.29999995231628,"redirectEnd":0,"redirectStart":0,"requestStart":133.29999995231628,"responseEnd":347.89999997615814,"responseStart":347.89999997615814,"secureConnectionStart":133.29999995231628},{"duration":214.80000001192093,"initiatorType":"script","name":"https://jira.workterra.net/s/d41d8cd98f00b204e9800998ecf8427e-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/1.0/_/download/batch/jira.webresources:calendar-en/jira.webresources:calendar-en.js","startTime":133.39999997615814,"connectEnd":133.39999997615814,"connectStart":133.39999997615814,"domainLookupEnd":133.39999997615814,"domainLookupStart":133.39999997615814,"fetchStart":133.39999997615814,"redirectEnd":0,"redirectStart":0,"requestStart":133.39999997615814,"responseEnd":348.19999998807907,"responseStart":348.19999998807907,"secureConnectionStart":133.39999997615814},{"duration":215.0999999642372,"initiatorType":"script","name":"https://jira.workterra.net/s/d41d8cd98f00b204e9800998ecf8427e-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/1.0/_/download/batch/jira.webresources:calendar-localisation-moment/jira.webresources:calendar-localisation-moment.js","startTime":133.5,"connectEnd":133.5,"connectStart":133.5,"domainLookupEnd":133.5,"domainLookupStart":133.5,"fetchStart":133.5,"redirectEnd":0,"redirectStart":0,"requestStart":133.5,"responseEnd":348.5999999642372,"responseStart":348.5999999642372,"secureConnectionStart":133.5},{"duration":215.19999998807907,"initiatorType":"script","name":"https://jira.workterra.net/s/ecf7ec549751ae117b778f0525d6d371-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/8.5.0/_/download/batch/com.atlassian.auiplugin:split_aui.pattern.label/com.atlassian.auiplugin:split_aui.pattern.label.js?locale=en-US","startTime":133.69999998807907,"connectEnd":133.69999998807907,"connectStart":133.69999998807907,"domainLookupEnd":133.69999998807907,"domainLookupStart":133.69999998807907,"fetchStart":133.69999998807907,"redirectEnd":0,"redirectStart":0,"requestStart":133.69999998807907,"responseEnd":348.89999997615814,"responseStart":348.89999997615814,"secureConnectionStart":133.69999998807907},{"duration":215.5,"initiatorType":"link","name":"https://jira.workterra.net/s/05c862146699bb029ceb0a489075e63b-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/bcd66e9a133a1b9f5fd14b56841e1c5b/_/download/contextbatch/css/jira.global.look-and-feel,-_super/batch.css","startTime":133.79999995231628,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":133.79999995231628,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":349.2999999523163,"responseStart":0,"secureConnectionStart":0},{"duration":215.39999997615814,"initiatorType":"script","name":"https://jira.workterra.net/rest/api/1.0/shortcuts/805012/81da1c7492d7ee698ae1cc31902498d9/shortcuts.js?context=issuenavigation&context=issueaction","startTime":133.89999997615814,"connectEnd":133.89999997615814,"connectStart":133.89999997615814,"domainLookupEnd":133.89999997615814,"domainLookupStart":133.89999997615814,"fetchStart":133.89999997615814,"redirectEnd":0,"redirectStart":0,"requestStart":133.89999997615814,"responseEnd":349.2999999523163,"responseStart":349.2999999523163,"secureConnectionStart":133.89999997615814},{"duration":215.5999999642372,"initiatorType":"link","name":"https://jira.workterra.net/s/9095228fa10daa2d3e3d7d5760c95e91-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/72477c22780abda5f51fe696920d843f/_/download/contextbatch/css/com.atlassian.jira.projects.sidebar.init,-_super,-jira.view.issue,-project.issue.navigator/batch.css?jira.create.linked.issue=true&richediton=true","startTime":134,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":134,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":349.5999999642372,"responseStart":0,"secureConnectionStart":0},{"duration":215.69999998807907,"initiatorType":"script","name":"https://jira.workterra.net/s/c19a1b46e985d7fb85efaf27c8febfdd-CDN/-w431t5/805012/9a9e1fae3639050b38ac467c3aa37e79/72477c22780abda5f51fe696920d843f/_/download/contextbatch/js/com.atlassian.jira.projects.sidebar.init,-_super,-jira.view.issue,-project.issue.navigator/batch.js?jira.create.linked.issue=true&locale=en-US&richediton=true","startTime":134.0999999642372,"connectEnd":134.0999999642372,"connectStart":134.0999999642372,"domainLookupEnd":134.0999999642372,"domainLookupStart":134.0999999642372,"fetchStart":134.0999999642372,"redirectEnd":0,"redirectStart":0,"requestStart":134.0999999642372,"responseEnd":349.7999999523163,"responseStart":349.7999999523163,"secureConnectionStart":134.0999999642372}],"threshold":1000,"fetchStart":0,"domainLookupStart":0,"domainLookupEnd":0,"connectStart":0,"connectEnd":0,"requestStart":26,"responseStart":127,"responseEnd":128,"domLoading":130,"domInteractive":803,"domContentLoadedEventStart":803,"domContentLoadedEventEnd":861,"domComplete":1078,"loadEventStart":1079,"loadEventEnd":1081,"userAgent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)","marks":[],"measures":[],"correlationId":"492009f803bf14","effectiveType":"4g","downlink":9.9,"rtt":0,"serverDuration":78,"dbReadsTimeInMs":23,"dbConnsTimeInMs":25,"applicationHash":"156decd7d2b4272533aa6cefc8294af635e1da97","experiments":[]}}
