CVE-2020-7356

Опубликовано: 06 авг. 2020

Источник: nvd

CVSS3: 10

CVSS3: 9.8

CVSS2: 10

EPSS Средний

Описание

CAYIN xPost suffers from an unauthenticated SQL Injection vulnerability. Input passed via the GET parameter 'wayfinder_seqid' in wayfinder_meeting_input.jsp is not properly sanitized before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and execute SYSTEM commands.

Ссылки

https://github.com/rapid7/metasploit-framework/pull/13607
Patch
Third Party Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5571.php
Exploit
Third Party Advisory
https://github.com/rapid7/metasploit-framework/pull/13607
Patch
Third Party Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5571.php
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cayintech:xpost:1.0:*:*:*:*:*:*:*

cpe:2.3:a:cayintech:xpost:2.0:*:*:*:*:*:*:*

cpe:2.3:a:cayintech:xpost:2.5.18103:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.6151

Средний

10 Critical

CVSS3

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-rx8q-gf7p-3fvp

github

больше 3 лет назад

EPSS

Процентиль: 98%

0.6151

Средний

10 Critical

CVSS3

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-89