CRITICAL🇵🇱 Wersja polska

CVE-2024-9574

CVSS 9.8v3.1pub. 2024-10-07upd. 2024-10-08

SQL injection vulnerability in SOPlanning <1.45, via /soplanning/www/user_groupes.php in the by parameter, which could allow a remote user to submit a specially crafted query, allowing an attacker to retrieve all the information stored in the DB.

🤖 AI Analysis
How it works

The vulnerability occurs in the /soplanning/www/user_groupes.php file, where the 'by' parameter is not properly validated or escaped before use in an SQL query. A remote attacker can submit a specially crafted HTTP request containing a malicious SQL payload. This allows execution of arbitrary queries to the database without the need for any privileges in the application.

Impact

An attacker can read all data stored in the SOPlanning application database, including potentially user authentication credentials, project information, and other sensitive organizational data. Depending on the environment configuration, data modification or deletion is also possible (CWE-89).

Mitigation & patch

SOPlanning must be immediately updated to version 1.45 or later. Detailed information is available in the vendor references and in the INCIBE-CERT notice: https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-soplanning

Who is affected

SOPlanning in versions below 1.45

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Soplanning

    APP
    Soplanning
    < 1.45
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
References

Related vulnerabilities

CVE-2024-57169CRITICAL9.8PL ✓ten sam produkt

SOPlanning 1.53.00 — ominięcie ograniczeń przesyłania plików prowadzące do RCE

CVE-2024-27113CRITICAL9.3PL ✓ten sam produkt

IDOR w SO Planning umożliwia nieuwierzytelniony eksport bazy danych

CVE-2024-27112CRITICAL9.3PL ✓ten sam produkt

SQL Injection w SO Planning — dostęp do bazy bez uwierzytelnienia

CVE-2024-27115CRITICAL10.0PL ✓ten sam produkt

Nieuwierzytelniony RCE w SO Planning — nieograniczony upload plików

CVE-2020-13963CRITICAL9.8ten sam produkt

SOPlanning before 1.47 has Incorrect Access Control because certain secret key information, and the related au...