CVE-2024-35584 — HIGH (8.8)

Vulnerability Description

SQL injection vulnerabilities were discovered in Ajax.php, ForWindow.php, ForExport.php, Modules.php, functions/HackingLogFnc.php in OpenSis Community Edition 9.1 to 8.0, and possibly earlier versions. It is possible for an authenticated user to perform SQL Injection due to the lack to sanitisation. The application takes arbitrary value from "X-Forwarded-For" header and appends it to a SQL INSERT statement directly, leading to SQL Injection.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Os4Ed	Opensis	8.0

Related Weaknesses (CWE)

CWE-89

References

http://opensis.comProduct
http://os4ed.comProduct
https://github.com/whwhwh96/CVE-2024-35584ExploitThird Party Advisory

FAQ

What is CVE-2024-35584?

CVE-2024-35584 is a vulnerability with a CVSS score of 8.8 (HIGH). SQL injection vulnerabilities were discovered in Ajax.php, ForWindow.php, ForExport.php, Modules.php, functions/HackingLogFnc.php in OpenSis Community Edition 9.1 to 8.0, and possibly earlier versions...

How severe is CVE-2024-35584?

CVE-2024-35584 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-35584?

Check the references section above for vendor advisories and patch information. Affected products include: Os4Ed Opensis.