CVE-2018-14058
published 2018-08-17CVE-2018-14058: Pimcore before 5.3.0 allows SQL Injection via the REST web service API.
PriorityP356medium6.5CVSS 3.0
AVNACLPRLUINSUCHINAN
EXPLOIT
EPSS
28.95%
97.9th percentile
Pimcore before 5.3.0 allows SQL Injection via the REST web service API.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pimcore | pimcore | < 5.3.0 | 5.3.0 |
| pimcore | pimcore | >= 0 < 5.3.0 | 5.3.0 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Pimcore SQLi Vulnerability
ghsa·2022-05-14
CVE-2018-14058 [MEDIUM] CWE-89 Pimcore SQLi Vulnerability
Pimcore SQLi Vulnerability
Pimcore before 5.3.0 allows SQL Injection via the REST web service API.
OSV
Pimcore SQLi Vulnerability
osv·2022-05-14
CVE-2018-14058 [MEDIUM] Pimcore SQLi Vulnerability
Pimcore SQLi Vulnerability
Pimcore before 5.3.0 allows SQL Injection via the REST web service API.
No detection rules found.
Exploit-DB
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
exploitdb·2018-08-16·CVSS 8.8
CVE-2018-14059 [HIGH] Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
---
SEC Consult Vulnerability Lab Security Advisory
title: SQL Injection, XSS & CSRF vulnerabilities
product: Pimcore
vulnerable version: 5.2.3 and below
fixed version: 5.3.0
CVE number: CVE-2018-14057, CVE-2018-14058, CVE-2018-14059
impact: High
homepage: https://pimcore.com/en
found: 2018-06-11
by: T. Silpavarangkura (Office Bangkok)
N. Rai-Ngoen (Office Bangkok)
SEC Consult Vulnerability Lab
An integrated part of SEC Consult
Europe | Asia | North America
https://www.sec-consult.com
Vendor description:
"Pimcore is an award-winning consolidated open source enterprise platform for
master data management (PIM/MDM), user experience management (CMS/UX), digital
asset management (DAM) and eCommerce."
Sourc
Metasploit
Pimcore Gather Credentials via SQL Injection
metasploit
Pimcore Gather Credentials via SQL Injection
Pimcore Gather Credentials via SQL Injection
This module extracts the usernames and hashed passwords of all users of the Pimcore web service by exploiting a SQL injection vulnerability in Pimcore's REST API. Pimcore begins to create password hashes by concatenating a user's username, the name of the application, and the user's password in the format USERNAME:pimcore:PASSWORD. The resulting string is then used to generate an MD5 hash, and then that MD5 hash is used to create the final hash, which is generated using PHP's built-in password_hash function.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/148954/Pimcore-5.2.3-CSRF-Cross-Site-Scripting-SQL-Injection.htmlhttp://seclists.org/fulldisclosure/2018/Aug/13https://www.exploit-db.com/exploits/45208/https://www.sec-consult.com/en/blog/advisories/sql-injection-xss-csrf-vulnerabilities-in-pimcore-software/http://packetstormsecurity.com/files/148954/Pimcore-5.2.3-CSRF-Cross-Site-Scripting-SQL-Injection.htmlhttp://seclists.org/fulldisclosure/2018/Aug/13https://www.exploit-db.com/exploits/45208/https://www.sec-consult.com/en/blog/advisories/sql-injection-xss-csrf-vulnerabilities-in-pimcore-software/
2018-08-17
Published