Critical Vulnerability was discovered in Vladhog Security Bot

UpdatedJune 5, 2024

•1 min read

Today our security partner LinkShield told us and we confirmed critical vulnerability that could cause cache poisoning for bot results.

How cache working

When someone send to us url that was already checked, we still pass it with each check that we usually do, each of modules just check if url is in cache and result source was not current module, then we skip module and continue until result source module found.

How cache poisoning was working

When you using /link_check command, you can choose order in which bot will check urls. If you choose all modules that you sure url will bypass, bot will end up adding safe result to cache, and in next check with all modules bot will return cached result without checking with modules that could possibly block url.

What actions was taken

We updated bot to force /link_check command to not use cache and not add any results to cache.

Thank you for being with us!

#vladhog-security #linkshield

Comments

Join the discussion

No comments yet. Be the first to comment.

More from this blog

Vladhog Security: The great registry outage.

Harbor Registry While preparing to release a new version of the Vladhog Security API, we discovered that we could no longer push images to our registry. In this post, we will explain what happened behind the scenes and why the outage occurred. We wer...

Nov 24, 20253 min read

Volaris Solutions: release of Phish Blocker

Our subsidiary team, Volaris Solutions, releasing Phish Blocker - Chrome extension which using database of over 20000 known scam urls to make sure you won’t accidentally enter malicious or phishing website. Most important features, Its built using C...

Jul 22, 20251 min read

New subsidiary team of Vladhog Security - SassGuard

Today we had a deal with SassGuard and we very happy to announce that they becoming subsidiary team of Vladhog Security! At this moment they already providing NSFW detection service for us and users of discord to better protect everyone, and together...

Jul 16, 20251 min read

API and security update 22.07.2024

Starting from today, we moving all our security checks (database check, dynamic analysis and others) to our API page - api.vladhog.ru. This update means: More stable bot work, because when we will update security checks, bot itself won't be affected...

Jul 21, 20241 min read

Vladhog Security Dashboard Update

Today we did security update for dashboard Before: Session cookies was fully stored on users side Now: Session cookies now fully stored on server side, we send to user only user token For safety, user token being reset and randomly generated agai...

Jul 15, 20241 min read

Vladhog Security Blog

15 posts

Making internet safer, together! https://security.vladhog.ru security@vladhog.ru

Command Palette

How cache working

How cache poisoning was working

What actions was taken

Comments

More from this blog