CVE-2017-5218
Last modified
CVE-2017-5218 is a vulnerability of currently unknown severity. A SQL Injection issue was discovered in SageCRM 7.x before 7.3 SP3. The AP_DocumentUI.asp web resource includes Utilityfuncs.js when the file is opened or viewed. EPSS estimates a 1.48% chance of exploitation in the next 30 days.
Description
A SQL Injection issue was discovered in SageCRM 7.x before 7.3 SP3. The AP_DocumentUI.asp web resource includes Utilityfuncs.js when the file is opened or viewed. This file crafts a SQL statement to identify the database that is to be in use with the current user's session. The database variable can be populated from the URL, and when supplied non-expected characters, can be manipulated to obtain access to the underlying database. The /CRM/CustomPages/ACCPAC/AP_DocumentUI.asp?SID=<VALID-SID>&database=1';WAITFOR DELAY '0:0:5'-- URI is a Proof of Concept.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Sagecrm | Sagecrm | 7.0 |
| Sagecrm | Sagecrm | 7.1 |
| Sagecrm | Sagecrm | 7.2 |
| Sagecrm | Sagecrm | 7.3 |
References
- http://research.aurainfosec.io/disclosures/sagecrm-CVE-2017-5219-CVE-2017-5218/Third Party Advisory
- http://www.securityfocus.com/bid/95968Third Party Advisory, VDB Entry
- http://research.aurainfosec.io/disclosures/sagecrm-CVE-2017-5219-CVE-2017-5218/Third Party Advisory
- http://www.securityfocus.com/bid/95968Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-5218?
How severe is CVE-2017-5218?
How do I fix CVE-2017-5218?
Are you affected by CVE-2017-5218?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST