Exploit
CVE-2024-9318

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)

Published: Sep 28, 2024 / Updated: 52d ago

010
CVSS 5.3EPSS 0.05%Medium
CVE info copied to clipboard

Summary

A critical vulnerability has been discovered in SourceCodester Advocate Office Management System 1.0. The vulnerability affects unknown functionality in the file /control/activate.php. The issue allows for SQL injection through manipulation of the 'id' argument. This vulnerability can be exploited remotely.

Impact

This SQL injection vulnerability can have severe consequences. Attackers can potentially: 1. Access, modify, or delete sensitive data in the database. 2. Bypass authentication mechanisms. 3. Execute administrative operations on the database. 4. In some cases, issue commands to the operating system. The CVSS v3.1 base score is 9.8 (Critical), indicating the highest severity level. The attack vector is network-based, requires low complexity, needs no privileges, and can be executed without user interaction. It impacts confidentiality, integrity, and availability, all rated as HIGH.

Exploitation

One proof-of-concept exploit is available on github.com. There is no evidence of proof of exploitation at the moment.

Patch

As of now, there is no mention of an official patch being available for this vulnerability. The security team should closely monitor for any updates or patches released by SourceCodester for the Advocate Office Management System.

Mitigation

While waiting for an official patch, consider the following mitigation strategies: 1. Implement strong input validation and sanitization for all user inputs, especially the 'id' parameter in /control/activate.php. 2. Use prepared statements or parameterized queries to prevent SQL injection. 3. Apply the principle of least privilege to database accounts used by the application. 4. If possible, temporarily disable or restrict access to the affected functionality until a patch is available. 5. Implement Web Application Firewall (WAF) rules to detect and block SQL injection attempts. 6. Regularly monitor system logs for any suspicious activities or unauthorized access attempts. 7. Consider isolating the affected system from the network if the vulnerability cannot be immediately addressed.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Timeline

First Article

Feedly found the first article mentioning CVE-2024-9318. See article

Sep 28, 2024 at 11:12 PM / Vulners.com RSS Feed
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Sep 28, 2024 at 11:12 PM
CVE Assignment

NVD published the first details for CVE-2024-9318

Sep 28, 2024 at 11:15 PM
CVSS

A CVSS base score of 6.3 has been assigned.

Sep 28, 2024 at 11:20 PM / nvd
EPSS

EPSS Score was set to: 0.05% (Percentile: 16.3%)

Sep 29, 2024 at 12:11 PM
CVSS

A CVSS base score of 9.8 has been assigned.

Oct 1, 2024 at 1:35 PM / nvd
Proof of Concept (PoC) Released

A proof of concept exploit has been released

Oct 1, 2024 at 9:11 PM
Static CVE Timeline Graph

Affected Systems

Mayurik/advocate_office_management_system
+null more

Exploits

https://github.com/para-paradise/webray.com.cn/blob/main/Advocate%20office%20management%20system/Advocate%20office%20management%20system%20activate.php%20error-based%20SQL%20Injection%20Vulnerability.md
+null more

Attack Patterns

CAPEC-108: Command Line Execution through SQL Injection
+null more

News

CVE-2024-9318 Exploit
CVE Id : CVE-2024-9318 Published Date: 2024-10-01T13:31:00+00:00 A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/activate.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. inTheWild added a link to an exploit: https://github.com/para-paradise/webray.com.cn/blob/main/Advocate%20office%20management%20system/Advocate%20office%20management%20system%20activate.php%20error-based%20SQL%20Injection%20Vulnerability.md
CVE-2024-9318
Critical Severity Description A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/activate.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Read more at https://www.tenable.com/cve/CVE-2024-9318
Update Sun Sep 29 06:28:03 UTC 2024
Update Sun Sep 29 06:28:03 UTC 2024
CVE-2024-9318
Gravedad 3.1 (CVSS 3.1 Base Score) Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
NA - CVE-2024-9318 - A vulnerability, which was classified as...
A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file...
See 5 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:None
User Interaction:None
Scope:Unchanged
Confidentiality:High
Integrity:High
Availability Impact:High

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI