CVE-2019-25580
CVE-2019-25580
8.8
HighPublished:
Last updated:
Source:disclosure@vulncheck.com
Analyzed
Weakness (CWE)
CVSS Vector
v4.0- Attack Vector
- Network
- Attack Complexity
- Low
- Attack Requirements
- None
- Privileges Required
- None
- User Interaction
- None
- Confidentiality (Vulnerable)
- High
- Integrity (Vulnerable)
- Low
- Availability (Vulnerable)
- None
- Confidentiality (Subsequent)
- None
- Integrity (Subsequent)
- None
- Availability (Subsequent)
- None
Description
ownDMS 4.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the IMG parameter. Attackers can send GET requests to pdfstream.php, imagestream.php, or anyfilestream.php with crafted SQL payloads in the IMG parameter to extract sensitive database information including version and database names.
References
disclosure@vulncheck.com
http://www.owndms.com/disclosure@vulncheck.com
https://datapacket.dl.sourceforge.net/project/owndms/owndms_47.zipdisclosure@vulncheck.com
https://www.exploit-db.com/exploits/46168disclosure@vulncheck.com
https://www.vulncheck.com/advisories/owndms-sql-injection-via-pdfstream-php-imagestream-php