CVE-2012-5701 - OpenCVE

Multiple SQL injection vulnerabilities in dotProject before 2.1.7 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search_string or (2) where parameter in a contacts action, (3) dept_id parameter in a departments action, (4) project_id[] parameter in a project action, or (5) company_id parameter in a system action to index.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Dotproject	Dotproject

Configuration 1 [-]

cpe:2.3:a:dotproject:dotproject:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/87625
http://packetstormsecurity.com/files/118274/dotProject-2.1.6-Cross-Site-Scripting-SQL-Injection.html
http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.7/
http://www.securityfocus.com/bid/56624
https://exchange.xforce.ibmcloud.com/vulnerabilities/80223
https://www.htbridge.com/advisory/HTB23124

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-10-20T15:00:00

Updated: 2024-08-06T21:14:16.435Z

Reserved: 2012-10-31T00:00:00

Link: CVE-2012-5701

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-10-20T15:55:04.323

Modified: 2017-08-29T01:32:44.557

Link: CVE-2012-5701

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-11-21T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple SQL injection vulnerabilities in dotProject before 2.1.7 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search_string or (2) where parameter in a contacts action, (3) dept_id parameter in a departments action, (4) project_id[] parameter in a project action, or (5) company_id parameter in a system action to index.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "87625", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/87625"}, {"name": "dotproject-searchstring-sql-injection(80223)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80223"}, {"tags": ["x_refsource_MISC"], "url": "https://www.htbridge.com/advisory/HTB23124"}, {"name": "56624", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/56624"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/118274/dotProject-2.1.6-Cross-Site-Scripting-SQL-Injection.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.7/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2012-5701", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple SQL injection vulnerabilities in dotProject before 2.1.7 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search_string or (2) where parameter in a contacts action, (3) dept_id parameter in a departments action, (4) project_id[] parameter in a project action, or (5) company_id parameter in a system action to index.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "87625", "refsource": "OSVDB", "url": "http://osvdb.org/87625"}, {"name": "dotproject-searchstring-sql-injection(80223)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80223"}, {"name": "https://www.htbridge.com/advisory/HTB23124", "refsource": "MISC", "url": "https://www.htbridge.com/advisory/HTB23124"}, {"name": "56624", "refsource": "BID", "url": "http://www.securityfocus.com/bid/56624"}, {"name": "http://packetstormsecurity.com/files/118274/dotProject-2.1.6-Cross-Site-Scripting-SQL-Injection.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/118274/dotProject-2.1.6-Cross-Site-Scripting-SQL-Injection.html"}, {"name": "http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.7/", "refsource": "CONFIRM", "url": "http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.7/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:14:16.435Z"}, "title": "CVE Program Container", "references": [{"name": "87625", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/87625"}, {"name": "dotproject-searchstring-sql-injection(80223)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80223"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.htbridge.com/advisory/HTB23124"}, {"name": "56624", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/56624"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://packetstormsecurity.com/files/118274/dotProject-2.1.6-Cross-Site-Scripting-SQL-Injection.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.7/"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2012-5701", "datePublished": "2014-10-20T15:00:00", "dateReserved": "2012-10-31T00:00:00", "dateUpdated": "2024-08-06T21:14:16.435Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:dotproject:dotproject:*:*:*:*:*:*:*:*", "matchCriteriaId": "B318B62C-1E63-4987-A618-37388FCDB81B", "versionEndIncluding": "2.1.6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple SQL injection vulnerabilities in dotProject before 2.1.7 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search_string or (2) where parameter in a contacts action, (3) dept_id parameter in a departments action, (4) project_id[] parameter in a project action, or (5) company_id parameter in a system action to index.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en dotProject anterior a 2.1.7 permiten a administradores remotos autenticados ejecutar comandos SQL arbitrarios a trav\u00e9s del par\u00e1metro (1) search_string o (2) where en una acci\u00f3n contacts, (3) del par\u00e1metro dept_id en una acci\u00f3n departments, (4) del par\u00e1metro project_id[] en una acci\u00f3n project, o (5) del par\u00e1metro company_id en una acci\u00f3n system en index.php. NOTA: esto puede ser aprovechado al utilizar CSRF para permitir a atacantes remotos ejecutar comandos SQL arbitrarios."}], "id": "CVE-2012-5701", "lastModified": "2017-08-29T01:32:44.557", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-10-20T15:55:04.323", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/87625"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.com/files/118274/dotProject-2.1.6-Cross-Site-Scripting-SQL-Injection.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://sourceforge.net/projects/dotproject/files/dotproject/dotProject%20Version%202.1.7/"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/56624"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/80223"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://www.htbridge.com/advisory/HTB23124"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}, {"lang": "en", "value": "CWE-89"}], "source": "nvd@nist.gov", "type": "Primary"}]}