CVE-2020-11004

SQL Injection in Admidio

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

SQL Injection was discovered in Admidio before version 3.3.13. The main cookie parameter is concatenated into a SQL query without any input validation/sanitization, thus an attacker without logging in, can send a GET request with arbitrary SQL queries appended to the cookie parameter and execute SQL queries. The vulnerability impacts the confidentiality of the system. This has been patched in version 3.3.13.

Se descubrió una Inyección SQL en Admidio versiones anteriores a la versión 3.3.13. El parámetro cookie principal se concatena en una consulta SQL sin ninguna comprobación y saneamiento de entrada, por lo que un atacante sin inicio de sesión puede enviar una petición GET con consultas SQL arbitrarias agregadas al parámetro cookie y ejecutar consultas SQL. La vulnerabilidad impacta la confidencialidad del sistema. Esto ha sido corregido en la versión 3.3.13.

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-03-30 CVE Reserved
2020-04-24 CVE Published
2024-02-27 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CAPEC

References (3)

URL	Tag	Source
https://github.com/Admidio/admidio/issues/908	Third Party Advisory
https://github.com/Admidio/admidio/security/advisories/GHSA-qh57-rcff-gx54	Third Party Advisory

URL	Date	SRC

URL	Date	SRC
https://github.com/Admidio/admidio/commit/ea5d6f114b151ed11ec0ad7cb47bd729e77a874a	2020-05-01

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Admidio Search vendor "Admidio"		Admidio Search vendor "Admidio" for product "Admidio"				< 3.3.13 Search vendor "Admidio" for product "Admidio" and version " < 3.3.13"		-		Affected