Security
Headlines

Headline

CVE-2022-3998: SQL injection vulnerability exists in scm · Issue #1 · MonikaBrzica/scm

A vulnerability, which was classified as critical, was found in MonikaBrzica scm. This affects an unknown part of the file uredi_korisnika.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-213699.

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed

huclilu opened this issue

Nov 15, 2022

· 0 comments

Comments

Build environment: Aapche2.4.39; MySQL5.7.26; PHP7.3.4

From line 22 to line 29, $id gets the get data and then brings it into the database for query

$result returns the database connection results and data query results

  • We can use sqlmap to validate

  • Manual SQL injection proof

POC:

http://127.0.0.1/uredi_korisnika.php?id=1 or (select 1174 from(select count(*),concat((select user()),floor(rand(0)*2))x from information_schema.tables group by x)a)

1 participant

CVE: Latest News