Vulnerability Description
The package pimcore/pimcore from 6.7.2 and before 6.8.3 are vulnerable to SQL Injection in data classification functionality in ClassificationstoreController. This can be exploited by sending a specifically-crafted input in the relationIds parameter as demonstrated by the following request: http://vulnerable.pimcore.example/admin/classificationstore/relations?relationIds=[{"keyId"%3a"''","groupId"%3a"'asd'))+or+1%3d1+union+(select+1,2,3,4,5,6,name,8,password,'',11,12,'',14+from+users)+--+"}]
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Pimcore | Pimcore | >= 6.7.2, < 6.8.3 |
Related Weaknesses (CWE)
References
- https://github.com/pimcore/pimcore/pull/7315PatchThird Party Advisory
- https://snyk.io/vuln/SNYK-PHP-PIMCOREPIMCORE-1017405Broken LinkThird Party Advisory
- https://github.com/pimcore/pimcore/pull/7315PatchThird Party Advisory
- https://snyk.io/vuln/SNYK-PHP-PIMCOREPIMCORE-1017405Broken LinkThird Party Advisory
FAQ
What is CVE-2020-7759?
CVE-2020-7759 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The package pimcore/pimcore from 6.7.2 and before 6.8.3 are vulnerable to SQL Injection in data classification functionality in ClassificationstoreController. This can be exploited by sending a specif...
How severe is CVE-2020-7759?
CVE-2020-7759 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-7759?
Check the references section above for vendor advisories and patch information. Affected products include: Pimcore Pimcore.