📄 Packet Storm EXIF Data Disclosure_PACKETSTORM:210462

{
    "lastseen": "2025-10-14T17:19:48",
    "description": "A bad code push allowed EXIF data to remain in some photos on Packet Storm. Our analysis shows...",
    "published": "2025-10-13T00:00:00",
    "modified": "2025-10-13T00:00:00",
    "type": "packetstorm",
    "title": "\ud83d\udcc4 Packet Storm EXIF Data Disclosure",
    "source": "",
    "references": "",
    "id": "PACKETSTORM:210462",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [],
    "sourceData": "Vulnerability Description :-\n    \n    When a user uploads an image in  https://packetstorm.news, the uploaded\n    image\u2019s EXIF Geolocation Data does not get stripped. As a result, anyone\n    can get sensitive information from https://packetstorm.news users like\n    their Geolocation, their Device information like Device Name, Version,\n    Software & Software version used etc.\n    \n    Steps to Reproduce :-\n    \n    1. Navigate to this url :-  https://packetstorm.news/\n    2. Login with Valid credentials\n    4. Upload an image  [ you can download metadata contained image from here\n     :- [ https://github.com/ianare/exif-samples/tree/master/jpg  ]\n    5. After uploading , Right click on the image and open in a new tab\n    6. Copy the url of that image or Download the image\n    7. Navigate to this website :- https://exif.tools\n    8. Paste that link or upload the downloaded image there and check EXIF\n    Geolocation\n    Data Not Stripped From Uploaded Image\n    9. Please refer the proof of concept attached below for better understanding\n    \n    Reference :- https://hackerone.com/reports/446238\n    \n    \n    Impact :-\n    \n    This vulnerability is CRITICAL and impacts all the  https://packetstorm.news\n    customer base. This vulnerability violates the privacy of a User and shares\n    sensitive information of the user who uploads an image on\n    https://packetstorm.news .\n    \n    \n    \n    --- \n    Packet Storm note:\n    \n    2025/10/13: \n    \n    A bad code push stripped a strip and exif data remained in some uploaded images. Our analysis shows only 0.004% of pics were affected and they have all been stripped to ensure no further exposure. This included pictures for 3 users (a packet storm admin one of them, the researcher the other, and a third pic that was not an accessible pic but rather a stored image on the backend that had been converted), along with an advertisement test image. We took the site offline during this process to mitigate further disclosure in case the issue was bigger. The primary vector of attack was addressed, tested, and pushed live. We would like to extend our thanks to Vaibhav Jain for reporting the issue.",
    "sourceHref": "https://packetstorm.news/download/210462",
    "cvss": {
        "score": 0,
        "severity": "NONE",
        "vector": "NONE",
        "version": "NONE"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://packetstorm.news/files/id/210462/",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}