CVE-2009-2734
published 2009-10-16CVE-2009-2734: SQL injection vulnerability in the get_employee function in classweekreport.inc in Achievo before 1.4.0 allows remote attackers to execute arbitrary SQL…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.26%
65.8th percentile
SQL injection vulnerability in the get_employee function in classweekreport.inc in Achievo before 1.4.0 allows remote attackers to execute arbitrary SQL commands via the userid parameter (aka user_id variable) to dispatch.php.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| achievo | achievo | <= 1.3.4 | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
| achievo | achievo | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable DELETE FROM SQL Injection Attempt
suricata·2010-07-30
CVE-2009-2734 ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable DELETE FROM SQL Injection Attempt
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable DELETE FROM SQL Injection Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable DELETE FROM SQL Injection Attempt"; flow:established,to_server; http.uri; content:"/dispatch.php?atknodetype=reports.weekreport"; fast_pattern; nocase; content:"userid="; nocase; distance:0; content:"DELETE"; nocase; content:"FROM"; nocase; distance:0; reference:url,securitytracker.com/alerts/2009/Oct/1023017.html; reference:url,www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt; reference:url,www.securityfocus.com/bid/36660/info; reference:cve,2009-2734; classtype:web-application-attack; sid:2010134; rev:8; metadata:affected_product Web_Server_Applications, atta
Suricata
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable INSERT INTO SQL Injection Attempt
suricata·2010-07-30
CVE-2009-2734 ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable INSERT INTO SQL Injection Attempt
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable INSERT INTO SQL Injection Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable INSERT INTO SQL Injection Attempt"; flow:established,to_server; http.uri; content:"/dispatch.php?atknodetype=reports.weekreport"; fast_pattern; nocase; content:"userid="; nocase; distance:0; content:"INSERT"; nocase; content:"INTO"; nocase; distance:0; reference:url,securitytracker.com/alerts/2009/Oct/1023017.html; reference:url,www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt; reference:url,www.securityfocus.com/bid/36660/info; reference:cve,2009-2734; classtype:web-application-attack; sid:2010133; rev:8; metadata:affected_product Web_Server_Applications, atta
Suricata
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UPDATE SET SQL Injection Attempt
suricata·2010-07-30
CVE-2009-2734 ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UPDATE SET SQL Injection Attempt
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UPDATE SET SQL Injection Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UPDATE SET SQL Injection Attempt"; flow:established,to_server; http.uri; content:"/dispatch.php?atknodetype=reports.weekreport"; nocase; content:"userid="; nocase; content:"UPDATE"; nocase; content:"SET"; nocase; pcre:"/UPDATE.+SET/i"; reference:url,securitytracker.com/alerts/2009/Oct/1023017.html; reference:url,www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt; reference:url,www.securityfocus.com/bid/36660/info; reference:cve,2009-2734; classtype:web-application-attack; sid:2010135; rev:6; metadata:affected_product Web_Server_Applications, attack_target Web_Serv
Suricata
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UNION SELECT SQL Injection Attempt
suricata·2010-07-30
CVE-2009-2734 ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UNION SELECT SQL Injection Attempt
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UNION SELECT SQL Injection Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable UNION SELECT SQL Injection Attempt"; flow:established,to_server; http.uri; content:"/dispatch.php?atknodetype=reports.weekreport"; nocase; content:"userid="; nocase; content:"UNION"; nocase; content:"SELECT"; nocase; distance:0; reference:url,securitytracker.com/alerts/2009/Oct/1023017.html; reference:url,www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt; reference:url,www.securityfocus.com/bid/36660/info; reference:cve,2009-2734; classtype:web-application-attack; sid:2010131; rev:7; metadata:affected_product Web_Server_Applications, attack_target Web_Server, c
Suricata
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable SELECT FROM SQL Injection Attempt
suricata·2010-07-30
CVE-2009-2734 ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable SELECT FROM SQL Injection Attempt
ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable SELECT FROM SQL Injection Attempt
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible Achievo userid= Variable SELECT FROM SQL Injection Attempt"; flow:established,to_server; http.uri; content:"/dispatch.php?atknodetype=reports.weekreport"; nocase; content:"userid="; nocase; content:"SELECT"; nocase; content:"FROM"; nocase; pcre:"/SELECT.+FROM/i"; reference:url,securitytracker.com/alerts/2009/Oct/1023017.html; reference:url,www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt; reference:url,www.securityfocus.com/bid/36660/info; reference:cve,2009-2734; classtype:web-application-attack; sid:2010132; rev:6; metadata:affected_product Web_Server_Applications, attack_target Web_
No writeups or analysis indexed.
http://secunia.com/advisories/37035http://securitytracker.com/id?1023017http://www.achievo.org/download/releasenotes/1_4_0http://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txthttp://www.securityfocus.com/archive/1/507131/100/0/threadedhttp://www.securityfocus.com/bid/36660https://exchange.xforce.ibmcloud.com/vulnerabilities/53743http://secunia.com/advisories/37035http://securitytracker.com/id?1023017http://www.achievo.org/download/releasenotes/1_4_0http://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txthttp://www.securityfocus.com/archive/1/507131/100/0/threadedhttp://www.securityfocus.com/bid/36660https://exchange.xforce.ibmcloud.com/vulnerabilities/53743
2009-10-16
Published