cnvd - cnvd-2019-43415

CNVD-2019-43415

Vulnerability from cnvd - Published: 2019-12-03

Title

WeBid SQL注入漏洞（CNVD-2019-43415）

Description

WeBid是一套开源的拍卖网站建站解决方案。 WeBid 1.2.2及之前版本中的yourauctions*.php脚本存在SQL注入漏洞。远程攻击者可利用该漏洞通过发送HTTP请求读取数据库。

Severity

中

Patch Name

WeBid SQL注入漏洞（CNVD-2019-43415）的补丁

Patch Description

WeBid是一套开源的拍卖网站建站解决方案。 WeBid 1.2.2及之前版本中的yourauctions*.php脚本存在SQL注入漏洞。远程攻击者可利用该漏洞通过发送HTTP请求读取数据库。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://github.com/renlok/WeBid/commit/256a5f9d3eafbc477dcf77c7682446cc4b449c7f

Reference

http://bugs.webidsupport.com/view.php?id=647

Impacted products

Name
WeBid WeBid <=1.2.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1000867",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000867"
    }
  },
  "description": "WeBid\u662f\u4e00\u5957\u5f00\u6e90\u7684\u62cd\u5356\u7f51\u7ad9\u5efa\u7ad9\u89e3\u51b3\u65b9\u6848\u3002\n\nWeBid 1.2.2\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u7684yourauctions*.php\u811a\u672c\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u53d1\u9001HTTP\u8bf7\u6c42\u8bfb\u53d6\u6570\u636e\u5e93\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/renlok/WeBid/commit/256a5f9d3eafbc477dcf77c7682446cc4b449c7f",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-43415",
  "openTime": "2019-12-03",
  "patchDescription": "WeBid\u662f\u4e00\u5957\u5f00\u6e90\u7684\u62cd\u5356\u7f51\u7ad9\u5efa\u7ad9\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nWeBid 1.2.2\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u7684yourauctions*.php\u811a\u672c\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u53d1\u9001HTTP\u8bf7\u6c42\u8bfb\u53d6\u6570\u636e\u5e93\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "WeBid SQL\u6ce8\u5165\u6f0f\u6d1e\uff08CNVD-2019-43415\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "WeBid WeBid \u003c=1.2.2"
  },
  "referenceLink": "http://bugs.webidsupport.com/view.php?id=647",
  "serverity": "\u4e2d",
  "submitTime": "2018-12-24",
  "title": "WeBid SQL\u6ce8\u5165\u6f0f\u6d1e\uff08CNVD-2019-43415\uff09"
}

CVE-2018-1000867 (GCVE-0-2018-1000867)

Vulnerability from cvelistv5 – Published: 2018-12-20 17:00 – Updated: 2024-09-16 18:43

Summary

WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	https://telekomsecurity.github.io/assets/advisori…	x_refsource_MISC
	http://bugs.webidsupport.com/view.php?id=647	x_refsource_MISC
	https://github.com/renlok/WeBid/commit/256a5f9d3e…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T12:47:57.447Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://telekomsecurity.github.io/assets/advisories/20181108_WeBid_Multiple_Vulnerabilities.txt"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://bugs.webidsupport.com/view.php?id=647"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/renlok/WeBid/commit/256a5f9d3eafbc477dcf77c7682446cc4b449c7f"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "dateAssigned": "2018-12-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-12-20T17:00:00Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://telekomsecurity.github.io/assets/advisories/20181108_WeBid_Multiple_Vulnerabilities.txt"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://bugs.webidsupport.com/view.php?id=647"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/renlok/WeBid/commit/256a5f9d3eafbc477dcf77c7682446cc4b449c7f"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_ASSIGNED": "2018-12-19T20:52:45.250853",
          "DATE_REQUESTED": "2018-12-03T08:55:27",
          "ID": "CVE-2018-1000867",
          "REQUESTER": "nils.stuenkel@t-systems.com",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://telekomsecurity.github.io/assets/advisories/20181108_WeBid_Multiple_Vulnerabilities.txt",
              "refsource": "MISC",
              "url": "https://telekomsecurity.github.io/assets/advisories/20181108_WeBid_Multiple_Vulnerabilities.txt"
            },
            {
              "name": "http://bugs.webidsupport.com/view.php?id=647",
              "refsource": "MISC",
              "url": "http://bugs.webidsupport.com/view.php?id=647"
            },
            {
              "name": "https://github.com/renlok/WeBid/commit/256a5f9d3eafbc477dcf77c7682446cc4b449c7f",
              "refsource": "MISC",
              "url": "https://github.com/renlok/WeBid/commit/256a5f9d3eafbc477dcf77c7682446cc4b449c7f"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-1000867",
    "datePublished": "2018-12-20T17:00:00Z",
    "dateReserved": "2018-12-20T00:00:00Z",
    "dateUpdated": "2024-09-16T18:43:58.903Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-43415

CVE-2018-1000867 (GCVE-0-2018-1000867)

Tags

Sightings

Nomenclature