CAYIN xPost suffers from an unauthenticated SQL Injection vulnerability. Input passed via the GET parameter 'wayfinder_seqid' in wayfinder_meeting_input.jsp is not properly sanitized before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and execute SYSTEM commands.
References
Link | Resource |
---|---|
https://github.com/rapid7/metasploit-framework/pull/13607 | Patch Third Party Advisory |
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5571.php | Exploit Third Party Advisory |
https://github.com/rapid7/metasploit-framework/pull/13607 | Patch Third Party Advisory |
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5571.php | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 05:37
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 10.0 |
References | () https://github.com/rapid7/metasploit-framework/pull/13607 - Patch, Third Party Advisory | |
References | () https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5571.php - Exploit, Third Party Advisory |
Information
Published : 2020-08-06 16:15
Updated : 2024-11-21 05:37
NVD link : CVE-2020-7356
Mitre link : CVE-2020-7356
CVE.ORG link : CVE-2020-7356
JSON object : View
Products Affected
cayintech
- xpost
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')