CVE-2024-22196
Authenticated (user role) SQL injection in `OrderAndPaginate` (GHSL-2023-270)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Nginx-UI is an online statistics for Server Indicators Monitor CPU usage, memory usage, load average, and disk usage in real-time. This issue may lead to information disclosure. By using `DefaultQuery`, the `"desc"` and `"id"` values are used as default values if the query parameters are not set. Thus, the `order` and `sort_by` query parameter are user-controlled and are being appended to the `order` variable without any sanitization. This issue has been patched in version 2.0.0.beta.9.
Nginx-UI es una estadística en línea para indicadores del servidor que monitorea el uso de la CPU, el uso de la memoria, el promedio de carga y el uso del disco en tiempo real. Este problema puede dar lugar a la divulgación de información. Al utilizar `DefaultQuery`, los valores `"desc"` e `"id"` se utilizan como valores predeterminados si los parámetros de consulta no están configurados. Por lo tanto, los parámetros de consulta `order` y `sort_by` están controlados por el usuario y se agregan a la variable `order` sin ningún tipo de sanitización. Este problema se solucionó en la versión 2.0.0.beta.9.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2024-01-08 CVE Reserved
- 2024-01-11 CVE Published
- 2024-01-19 EPSS Updated
- 2024-08-01 CVE Updated
- 2024-08-01 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-h374-mm57-879c | 2024-08-01 |
URL | Date | SRC |
---|---|---|
https://github.com/0xJacky/nginx-ui/commit/ec93ab05a3ecbb6bcf464d9dca48d74452df8a5b | 2024-02-29 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | < 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version " < 2.0.0" | - |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta1 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta2 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta3 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta4 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta4_patch |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta5 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta5_patch |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta6 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta6_patch |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta6_patch2 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta7 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta8 |
Affected
| ||||||
Nginxui Search vendor "Nginxui" | Nginx Ui Search vendor "Nginxui" for product "Nginx Ui" | 2.0.0 Search vendor "Nginxui" for product "Nginx Ui" and version "2.0.0" | beta8_patch |
Affected
|