CVE-2024-13194
Published: 09 January 2025
Description
Adversaries may leverage databases to mine valuable information.
Security Summary
CVE-2024-13194 is a critical SQL injection vulnerability in Sucms version 1.0. The issue affects an unknown functionality within the file /admin/admin_members.php?ac=search, where manipulation of the "uid" argument enables the injection. It is remotely exploitable and has been assigned CWEs 74 and 89, with a CVSS v3.1 base score of 6.3 (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L).
An attacker with low privileges, such as an authenticated user, can exploit this vulnerability over the network with low complexity and no user interaction required. Successful exploitation allows limited impacts on confidentiality, integrity, and availability, potentially enabling unauthorized data access, modification, or disruption through SQL queries.
Advisories from VulDB (ctiid.290786, id.290786, submit.469566) document the vulnerability, and a public exploit proof-of-concept is available in a GitHub repository at Upgradeextension/Sucms-v1.0SQLinjection. No patches or specific mitigation steps are detailed in the provided references.
The exploit has been publicly disclosed, increasing the risk of active exploitation against unpatched Sucms 1.0 instances.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
SQL injection in web application admin panel (Sucms 1.0 /admin/admin_members.php?ac=search uid) enables exploitation of public-facing application for initial access (T1190), abuse of server software component (T1505 as mapped in advisory), and collection of data from databases such as user/member information (T1213.006).