CVE-2018-25177
Received Received - Intake
CSRF in Data Center Audit 2.6.2 Enables Admin Password Reset

Publication date: 2026-03-06

Last updated on: 2026-03-06

Assigner: VulnCheck

Description
Data Center Audit 2.6.2 contains a cross-site request forgery vulnerability that allows attackers to reset administrator passwords without authentication by submitting crafted POST requests. Attackers can send requests to dca_resetpw.php with parameters updateuser, pass, pass2, and submit_reset to change the admin account password and gain administrative access.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-06
Last Modified
2026-03-06
Generated
2026-06-16
AI Q&A
2026-03-06
EPSS Evaluated
2026-06-14
NVD
CVE-2018-25177
EUVD
EUVD-2018-21632
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-352 The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

[{'type': 'paragraph', 'content': "This vulnerability is a Cross-Site Request Forgery (CSRF) issue in Data Center Audit version 2.6.2. It allows an attacker to reset the administrator's password without any authentication by sending a specially crafted POST request to the password reset endpoint (dca_resetpw.php). The attacker includes parameters such as updateuser, pass, pass2, and submit_reset to change the admin password and gain administrative access."}] [1]

Impact Analysis

This vulnerability can have a significant impact as it allows an attacker to take over the administrator account without needing to authenticate. By resetting the admin password, the attacker gains full administrative access to the Data Center Audit application, potentially leading to unauthorized control, data manipulation, or further exploitation within the system.

Compliance Impact

I don't know

Detection Guidance

[{'type': 'paragraph', 'content': 'This vulnerability can be detected by monitoring for suspicious POST requests sent to the endpoint /dca_resetpw.php with parameters such as updateuser=admin, pass, pass2, and submit_reset. These crafted POST requests are used to reset the administrator password without authentication.'}, {'type': 'paragraph', 'content': 'To detect exploitation attempts on your network or system, you can use network traffic analysis tools or web server logs to look for POST requests targeting /dca_resetpw.php containing these parameters.'}, {'type': 'paragraph', 'content': 'Example commands to detect such requests in web server logs (assuming Apache logs):'}, {'type': 'list_item', 'content': "grep 'POST /dca_resetpw.php' /var/log/apache2/access.log"}, {'type': 'list_item', 'content': "grep 'updateuser=admin' /var/log/apache2/access.log"}, {'type': 'list_item', 'content': 'Use a network packet capture tool like tcpdump or Wireshark to filter HTTP POST requests to /dca_resetpw.php.'}] [1]

Mitigation Strategies

Immediate mitigation steps include restricting access to the /dca_resetpw.php endpoint to trusted users only, such as by implementing IP whitelisting or authentication controls.

Additionally, disabling or removing the password reset functionality if not needed can reduce the attack surface.

Since the vulnerability is a Cross-Site Request Forgery (CSRF), implementing CSRF tokens in the password reset form and verifying them on the server side can prevent unauthorized requests.

Monitoring logs for suspicious activity and changing administrator passwords regularly can also help mitigate potential exploitation.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2018-25177. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart