Description
A vulnerability was determined in star7th ShowDoc up to 2.10.10/3.6.2/3.8.0. Affected by this vulnerability is an unknown functionality of the file server/Application/Api/Controller/PageController.class.PHP of the component API Page Sort Endpoint. Executing a manipulation of the argument pages can lead to sql injection. The attack may be launched remotely. Upgrading to version 3.8.1 addresses this issue. It is suggested to upgrade the affected component. According to the researcher, "[t]he vendor explicitly stated they will not backport patches to the older affected versions."
Published: 2026-04-25
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Remote SQL Injection
Action: Patch Immediately
AI Analysis

Impact

The vulnerability in the PageController.class.PHP of star7th ShowDoc allows an attacker to manipulate the "pages" argument in the API Page Sort Endpoint. This manipulation results in a SQL injection that could expose or alter data stored in the database, making the weakness a severe confidentiality breach. The flaw is identified as a classic SQL injection (CWE‑74, CWE‑89) and can be triggered from a remote location without local access.

Affected Systems

Star7th ShowDoc versions up to 2.10.10, 3.6.2, and 3.8.0 are affected. The issue resides in the API Page Sort Endpoint component of the file server/application controller.

Risk and Exploitability

The CVSS score of 5.3 classifies the issue as medium severity, while an EPSS score of less than 1% indicates a low estimated exploitation probability. The vulnerability is not listed in the CISA KEV catalog. An attacker can launch the exploit remotely, but the description does not specify required authentication or privileges; therefore, the attack may rely on open API access or insufficient access controls. If successfully exploited, the attacker could gain unauthorized read or modify access to the database via injected SQL commands.

Generated by OpenCVE AI on April 28, 2026 at 13:29 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Star7th ShowDoc to version 3.8.1 or later, which contains the fix for the SQL injection flaw.
  • If an upgrade cannot be performed immediately, disable or restrict access to the API Page Sort Endpoint until the update is applied, limiting the opportunity for remote exploitation.
  • Ensure that all API endpoints, including the affected Page Sort Endpoint, require authenticated and authorized access, and apply any vendor-provided configuration hardening to enforce these controls.

Generated by OpenCVE AI on April 28, 2026 at 13:29 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-fm5r-cj7v-rj2c ShowDoc has an Injection vulnerability
History

Mon, 27 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Star7th
Star7th showdoc
Vendors & Products Star7th
Star7th showdoc

Mon, 27 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Sat, 25 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in star7th ShowDoc up to 2.10.10/3.6.2/3.8.0. Affected by this vulnerability is an unknown functionality of the file server/Application/Api/Controller/PageController.class.PHP of the component API Page Sort Endpoint. Executing a manipulation of the argument pages can lead to sql injection. The attack may be launched remotely. Upgrading to version 3.8.1 addresses this issue. It is suggested to upgrade the affected component. According to the researcher, "[t]he vendor explicitly stated they will not backport patches to the older affected versions."
Title star7th ShowDoc API Page Sort Endpoint PageController.class.PHP sql injection
First Time appeared Showdoc
Showdoc showdoc
Weaknesses CWE-74
CWE-89
CPEs cpe:2.3:a:showdoc:showdoc:*:*:*:*:*:*:*:*
Vendors & Products Showdoc
Showdoc showdoc
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:ND/RL:OF/RC:C'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X'}

Subscriptions

Showdoc Showdoc
Star7th Showdoc
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-04-27T13:34:22.413Z

Reserved: 2026-04-24T19:03:07.004Z

Link: CVE-2026-6982

cve-icon Vulnrichment

Updated: 2026-04-27T13:18:54.468Z

cve-icon NVD

Status : Deferred

Published: 2026-04-25T15:16:17.823

Modified: 2026-04-27T18:42:11.700

Link: CVE-2026-6982

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T13:30:32Z

Weaknesses