Multiple SQL injection vulnerabilities in OrangeHRM 2.7.1 RC 1 allow remote authenticated administrators to execute arbitrary SQL commands via the sortField parameter to (1) viewCustomers, (2) viewPayGrades, or (3) viewSystemUsers in symfony/web/index.php/admin/, as demonstrated using cross-site request forgery (CSRF) attacks.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:S/C:P/I:P/A:P
Vendors Products
Orangehrm
  • Orangehrm

Configuration 1 [-]

cpe:2.3:a:orangehrm:orangehrm:2.7.1:rc1:*:*:*:*:*:*
References
Link Resource
http://archives.neohapsis.com/archives/bugtraq/2012-11/0029.html Exploit
http://osvdb.org/86858
http://packetstormsecurity.org/files/117925/OrangeHRM-2.7.1-rc.1-Cross-Site-Request-Forgery-SQL-Injection.html
http://www.securityfocus.com/bid/56417 Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/79833
https://www.htbridge.com/advisory/HTB23119 Exploit
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2012-12-03T21:00:00

Updated: 2017-08-28T12:57:01

Reserved: 2012-10-10T00:00:00

Link: CVE-2012-5367

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2012-12-03T21:55:01.720

Modified: 2017-08-29T01:32:40.103

Link: CVE-2012-5367

JSON object: View

cve-icon Redhat Information

No data.

CWE