A vulnerability was found in vtiger CRM 5.0.2 (Customer Relationship Management System). It has been rated as critical. Affected by this issue is an unknown functionality of the file include/utils/SearchUtils.php of the component Dashboard. The manipulation of the argument assigned_user_id with an unknown input leads to a sql injection vulnerability. Using CWE to declare the problem leads to CWE-89. The software constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Impacted is confidentiality, integrity, and availability. CVE summarizes:

SQL injection vulnerability in the dashboard (include/utils/SearchUtils.php) in vtiger CRM before 5.0.3 allows remote authenticated users to execute arbitrary SQL commands via the assigned_user_id parameter in a Potentials ListView action to index.php.

The weakness was disclosed 03/13/2007 (Website). The advisory is available at trac.vtiger.com. This vulnerability is handled as CVE-2007-3603 since 07/06/2007. The exploitation is known to be easy. The attack may be launched remotely. The successful exploitation needs a simple authentication. Technical details are known, but there is no available exploit. This vulnerability is assigned to T1505 by the MITRE ATT&CK project.

By approaching the search of inurl:include/utils/SearchUtils.php it is possible to find vulnerable targets with Google Hacking.

Upgrading to version 5.0.2 eliminates this vulnerability.

The entry 37683 is pretty similar.

Productinfo

Type

• Customer Relationship Management System

Vendor

• vtiger

Name

• CRM

License

• open-source

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion