Exploit
CVE-2024-9328

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)

Published: Sep 29, 2024 / Updated: 51d ago

010
CVSS 5.3EPSS 0.05%Medium
CVE info copied to clipboard

Summary

A critical vulnerability has been identified in the SourceCodester Advocate Office Management System version 1.0. The vulnerability is located in the file /control/edit_client.php and allows for SQL injection attacks. This security flaw is caused by improper neutralization of special elements used in SQL commands, specifically related to the manipulation of the 'id' argument.

Impact

This vulnerability can have severe consequences. An attacker can potentially: 1. Execute unauthorized SQL commands on the database. 2. Access, modify, or delete sensitive data stored in the database. 3. Bypass authentication mechanisms. 4. Escalate privileges within the application. 5. In some cases, execute commands on the operating system hosting the database. The CVSS v3.1 base score of 9.8 (Critical) indicates that this vulnerability has high impact on confidentiality, integrity, and availability of the system. It can be exploited remotely without requiring user interaction or special privileges.

Exploitation

One proof-of-concept exploit is available on github.com. There is no evidence of proof of exploitation at the moment.

Patch

As of the latest information provided, there is no mention of an official patch being available for this vulnerability. The security team should monitor the vendor's website or contact SourceCodester directly for updates on a potential patch.

Mitigation

Until a patch is available, consider the following mitigation strategies: 1. Implement input validation and sanitization for all user inputs, especially the 'id' parameter in edit_client.php. 2. Use prepared statements or parameterized queries instead of dynamic SQL to prevent SQL injection. 3. Apply the principle of least privilege to database accounts used by the application. 4. Consider temporarily disabling the affected functionality if possible without disrupting critical operations. 5. Implement a Web Application Firewall (WAF) to filter out malicious requests. 6. Monitor database and application logs for any suspicious activities or unauthorized access attempts. 7. If feasible, consider upgrading to a newer version of the software if one becomes available, or evaluate alternative office management systems with better security practices.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Timeline

First Article

Feedly found the first article mentioning CVE-2024-9328. See article

Sep 29, 2024 at 10:43 PM / CVE
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Sep 29, 2024 at 10:44 PM
CVE Assignment

NVD published the first details for CVE-2024-9328

Sep 29, 2024 at 11:15 PM
CVSS

A CVSS base score of 6.3 has been assigned.

Sep 29, 2024 at 11:20 PM / nvd
EPSS

EPSS Score was set to: 0.05% (Percentile: 16.3%)

Sep 30, 2024 at 9:22 AM
CVSS

A CVSS base score of 9.8 has been assigned.

Oct 1, 2024 at 11:35 AM / nvd
Proof of Concept (PoC) Released

A proof of concept exploit has been released

Oct 1, 2024 at 2:10 PM
Static CVE Timeline Graph

Affected Systems

Mayurik/advocate_office_management_system
+null more

Exploits

https://github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/2024/Advocate%20office%20management%20system%20-%20edit_client.php%20sql%20injection%20vulnerability.md
+null more

Attack Patterns

CAPEC-108: Command Line Execution through SQL Injection
+null more

News

Update Wed Oct 2 22:37:10 UTC 2024
Update Wed Oct 2 22:37:10 UTC 2024
CVE-2024-9328 Exploit
CVE Id : CVE-2024-9328 Published Date: 2024-10-01T11:34:00+00:00 A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/edit_client.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. inTheWild added a link to an exploit: https://github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/2024/Advocate%20office%20management%20system%20-%20edit_client.php%20sql%20injection%20vulnerability.md
CVE Alert: CVE-2024-9328 - https://www. redpacketsecurity.com/cve_aler t_cve-2024-9328/ # OSINT # ThreatIntel # CyberSecurity # cve_2024_9328
CVE Alert: CVE-2024-9328
Affected Endpoints: No affected endpoints listed.
CVE-2024-9328
Critical Severity Description A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/edit_client.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Read more at https://www.tenable.com/cve/CVE-2024-9328
See 8 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:None
User Interaction:None
Scope:Unchanged
Confidentiality:High
Integrity:High
Availability Impact:High

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI