Description

An SQL injection vulnerability in Symphony CMS before 2.3.2 allows remote authenticated users to execute arbitrary SQL commands via the sort parameter to system/authors/. This vulnerability can also be leveraged using CSRF to allow remote unauthenticated attackers to execute arbitrary SQL commands.

Remediation

Upgrade to the latest version of Symphony.

References

Symphony 2.3.2 Fixes

Related Vulnerabilities

MySQL CVE-2013-2381 Vulnerability (CVE-2013-2381)

osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43709)

Oracle JRE CVE-2014-0452 Vulnerability (CVE-2014-0452)

XWiki Other Vulnerability (CVE-2023-29507)

Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-7503)

Severity

High

Classification

CVE-2013-2559 CWE-89 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

Tags

Known Vulnerabilities SQL Injection