EXIF Geolocation Data Not Stripped From Uploaded Images

-

EXIF Geolocation Data Not Stripped From Uploaded Images (Manual User Enumeration)

EXIF (Exchangeable Image File Format) is a standard used to store metadata within image files. This metadata includes information such as camera settings, date and time of capture, and even geolocation data. Geolocation data, also known as geotags or geotagging, refers to the specific latitude and longitude coordinates where the image was taken.

In some cases, when you upload an image to a website or social media platform, the geolocation data embedded in the image's EXIF metadata is not automatically stripped or removed. This means that anyone who has access to the image can potentially extract the geolocation information and determine the exact location where the photo was taken.

In this Article :

  • Manual User Enumeration Introduction 
  • Manual User Enumeration Finding & Reporting
  • What is Impact
  • What is Mitigations

Let’s start to details of a Manual User Enumeration vulnerability. We are going to about the basic description of the vulnerability and how to search for it.

How to Test Manual User Enumeration ?

STEP #1: Got to GitHub (https://github.com/ianare/exif-samples/tree/master/jpg/gps). There are lot of images having resolution (i.s 1280x720 ) , and also with different MB’s .

STEP #2: Visit any website, create an account go to image upload option in profile , upload the image.

Now see the path of the uploaded image ( Either by right click on image then copy image address OR right-click, inspect the image, the URL will come in the inspect, edit it as HTML).

STEP #3:Then open:- https://jimpl.com/ , Paste the URL (https://www.exmple.com/uploads/user_image/1255.jpg) the image path See wheather is that still showing exif data , if it is then Report it.
Mitigation :
In conclusion, EXIF geolocation data refers to the coordinates embedded in an image's metadata, indicating the location where the photo was taken. While some platforms automatically remove this information upon upload, users should be cautious about sharing images online and steps to protect their privacy by removing or disabling geolocation data when necessary.

it's essential for users to be aware of the potential risks and take precautions when sharing images online. This includes manually removing or disabling geolocation services on their devices or using specialized software to strip the metadata from images before sharing them.

Impact :

The impact of not stripping EXIF geolocation data from uploaded images can have several implications both positive and negative

Geolocation data can also pose security risks. For example, if someone shares an image taken on a vacation, it indicates that their home may be unoccupied, making it an attractive target for burglaries. Similarly, geolocation data from sensitive locations, such as military installations or government buildings, could be exploited for malicious purposes.

 On the flip side, not stripping geolocation data can enable targeted advertising based on users' whereabouts. Advertisers can leverage this information to deliver location-specific ads, promotions, or recommendations. While this may be beneficial for businesses, some users may find it intrusive or concerning from a privacy standpoint.

                                           Report Format

Hello Team
             I'm Career Technology Cyber security India a white security researcher from Mumbai, India found a vulnerability on your website i.e.:- https://www.exmple.com/

Vulnerability Name: EXIF Geo-location Data Not Stripped From Uploaded Images (Manual User Enumeration)

Descriptions:
When a user uploads an image for profile, the uploaded image’s EXIF Geolocation Data does not get stripped. As a result, anyone can get sensitive information of  https://www.exmple.com/  their Geolocation, Device information like Device Name, Version, Software & Software version used etc.

Steps to Reproduce:
Proof of Concept:- 
1.Browse this link:-https://github.com/ianare/exif-samples/blob/master/jpg/gps/DSCN0010.jpg
2.Download the image and Upload the picture in the profile account (https://www.exmple.com/home/profile)
3.Now see the path of the uploaded image ( Either by right click on image then copy image address OR right-click,inspect the image, the URL will come in the inspect, edit it as HTML )
4.Then open:- https://jimpl.com/
5.Paste the URL (https://www.exmple.com/uploads/users_image/12589.jpg) of the image path now you can see the EXIF data.

Impact:
This vulnerability impacts all users on Rocketlane. This vulnerability violates the privacy of a User and shares sensitive information of the user who uploads their profile picture on Rocketlane.

Recommendation: 
Strip all metadata from the image once it is uploaded into the application.  

PFA of video for steps by steps guidance also help to regenerate the vulnerability

Thanks & Regards,
Career Technology Cyber security India 
Indian Bug Hunter

Comments

Post a Comment

Popular posts from this blog

CAREER TECHNOLOGY CYBER SECURITY INDIA PVT LTD.

-
Image
CAREER TECHNOLOGY CYBER SECURITY INDIA PVT  LTD. ISO 27001:2013, ISO 9001:2015 Certified  Company         INTERNATIONALLY AUTHORISED FOR CYBER FORENSICS, CYBER SECURITY, CYBER AUDIT TRAINING & EXAM CENTER BY MILE2 CYBER SECURITY United States First ATC of Mile 2 Cyber Security in Mumbai & MIRA-BHAYANDER / VASAI-VIRAR, Since JAN 2017. Offline as well as Online batches both are available. PG accommodation for students is available. Joi n   CAREER TECHNOLOGY CYBER SE CURITY INDIA  PVT LTD.   Today  To Start Your  Career In  Cyber Security. * OUR PROFESSIONAL DIPLOMA COURSES FOR  ALL  UNDERGRADUATE ,    GRADUATE ,  AND  WORKING PROFESSIONALS* __ ______________________________________________________________________ Why do you have to choose our institute? 1. Our Diploma is Authorised by the Indian Government as well as its full copyright & Trademark by ISO. IT will help you to add Extra Technical Skills in     Your Resume. Its Contains Full Practicals Knowledge from the In
Read more

Cyber Security Audits

-
Image
 Cyber Security Audits What is Cyber Security Audit?                 A cyber audit, at its core, refers to a systematic evaluation and assessment of an organization's information systems. This evaluation is designed to identify potential vulnerabilities, non-compliance with standards, and areas of improvement in both technology and processes, all with the aim of safeguarding digital assets against potential threats. Cyber audits delve deeply into the organization's technological infrastructure, scrutinizing hardware, software, networks, and even the practices and protocols that users and administrators follow. This in-depth review allows for a holistic understanding of the current cybersecurity posture of the entity and helps in crafting more robust and resilient digital environments. The rationale behind conducting a cyber audit often stems from both internal and external pressures. Internally, management recognizes the intrinsic value of their digital assets, understanding th
Read more

Some Dark web Links

-
Image
Here are some of the Forum/Website to visit on dark web related to cybersecurity and hacking. Before visiting this website please follow the steps to be safe on the dark web/ Deepweb. Security Steps to be taken before opening the links: First of All, To browse these dark web forums, first close all active programs and applications in your computer then start Your NordVPN or any Paid and HQ VPN that have TOR service and select Onion Over VPN Server.  Now start Tor Browser and disable Javascript. In this way, you have created a completely secure and untraceable environment for you. If you think Tor Browser gives you full anonymity then you are wrong.  Only premium VPN services can provide you fully secure and untraceable environment. I have tried my hands on many premium VPN services, and I found NordVPN beats its competitor in all features. Disclaimer ⚠ : This info are shared for educational purpose only, neither the website nor creator hold any info or liable to any
Read more