在SourceCodester Prison Management System 1.0中已发现了分类为致命的漏洞。 受影响的是未知功能文件:/admin/?page=inmates/view_inmate的组件:Inmate Handler。 手动调试的软件参数:id使用输入:1%27%20and%201=2%20union%20select%201,user(),3,4,5,6,7,8,9,0,database(),2,3,4,5,6,7,8,9,0,1,2,3,4--+不合法输入可导致 SQL注入。 使用CWE来声明会导致 CWE-89 的问题。 此漏洞的脆弱性 2022-06-07所发布。 索取公告的网址是github.com。
该漏洞的交易名称为CVE-2022-2018, 攻击可以远程发起, 有技术细节可用。 此外还有一个漏洞可利用。 该漏洞利用已公开,可能会被利用。 目前漏洞的结构决定了可能的价格范围为美元价USD $0-$5k。 该漏洞由MITRE ATT&CK项目分配为T1505。
它被宣布为proof-of-concept。 该漏洞利用的共享下载地址为:github.com。 估计零日攻击的地下价格约为$0-$5k。
该漏洞被披露后,远在此前发表过可能的缓解措施。
| 字段 | 2022-06-07 12時15分 | 2022-06-10 08時51分 |
|---|
| vendor | SourceCodester | SourceCodester |
| name | Prison Management System | Prison Management System |
| version | 1.0 | 1.0 |
| component | Inmate Handler | Inmate Handler |
| file | /admin/?page=inmates/view_inmate | /admin/?page=inmates/view_inmate |
| argument | id | id |
| cwe | 89 (SQL注入) | 89 (SQL注入) |
| risk | 2 | 2 |
| cvss3_vuldb_av | N | N |
| cvss3_vuldb_ac | L | L |
| cvss3_vuldb_pr | H | H |
| cvss3_vuldb_ui | N | N |
| cvss3_vuldb_s | U | U |
| cvss3_vuldb_c | L | L |
| cvss3_vuldb_i | L | L |
| cvss3_vuldb_a | L | L |
| cvss3_vuldb_e | P | P |
| cvss3_vuldb_rc | R | R |
| url | https://github.com/ch0ing/vul/blob/main/WebRay.com.cn/Prison%20Management%20System(SQLI).md | https://github.com/ch0ing/vul/blob/main/WebRay.com.cn/Prison%20Management%20System(SQLI).md |
| availability | 1 | 1 |
| publicity | 1 | 1 |
| url | https://github.com/ch0ing/vul/blob/main/WebRay.com.cn/Prison%20Management%20System(SQLI).md | https://github.com/ch0ing/vul/blob/main/WebRay.com.cn/Prison%20Management%20System(SQLI).md |
| cve | CVE-2022-2018 | CVE-2022-2018 |
| responsible | VulDB | VulDB |
| date | 1654552800 (2022-06-07) | 1654552800 (2022-06-07) |
| cvss2_vuldb_av | N | N |
| cvss2_vuldb_ac | L | L |
| cvss2_vuldb_au | M | M |
| cvss2_vuldb_ci | P | P |
| cvss2_vuldb_ii | P | P |
| cvss2_vuldb_ai | P | P |
| cvss2_vuldb_e | POC | POC |
| cvss2_vuldb_rc | UR | UR |
| cvss2_vuldb_rl | ND | ND |
| cvss3_vuldb_rl | X | X |
| cvss2_vuldb_basescore | 5.8 | 5.8 |
| cvss2_vuldb_tempscore | 5.0 | 5.0 |
| cvss3_vuldb_basescore | 4.7 | 4.7 |
| cvss3_vuldb_tempscore | 4.3 | 4.3 |
| cvss3_meta_basescore | 4.7 | 4.7 |
| cvss3_meta_tempscore | 4.3 | 4.3 |
| price_0day | $0-$5k | $0-$5k |
| input_value | 1%27%20and%201=2%20union%20select%201,user(),3,4,5,6,7,8,9,0,database(),2,3,4,5,6,7,8,9,0,1,2,3,4--+ | 1%27%20and%201=2%20union%20select%201,user(),3,4,5,6,7,8,9,0,database(),2,3,4,5,6,7,8,9,0,1,2,3,4--+ |
| cve_assigned | | 1654552800 (2022-06-07) |
| cve_nvd_summary | | A vulnerability classified as critical has been found in SourceCodester Prison Management System 1.0. Affected is an unknown function of the file /admin/?page=inmates/view_inmate of the component Inmate Handler. The manipulation of the argument id with the input 1%27%20and%201=2%20union%20select%201,user(),3,4,5,6,7,8,9,0,database(),2,3,4,5,6,7,8,9,0,1,2,3,4--+ leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. |