cbcvebase.
CVE-2018-17391
published 2018-09-28

CVE-2018-17391: SQL Injection exists in authors_post.php in Super Cms Blog Pro 1.0 via the author parameter.

PriorityP260critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
3.21%
86.6th percentile
SQL Injection exists in authors_post.php in Super Cms Blog Pro 1.0 via the author parameter.

Affected

1 ranges
VendorProductVersion rangeFixed in
super_cms_blog_pro_projectsuper_cms_blog_pro

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://localhost/[PATH]/authors_post.php?author=[SQL]&p_id=1
path/authors_post.php
command'++/*!11111UNION*/+/*!11111SELECT*/+0x31,0x32,/*!11111CONCAT_WS*/(0x203a20,VERSION()),0x34,0x35,0x36,0x37,0x38,0x39,0x3130,0x3131--+-
  • SQL injection via the `author` GET parameter in authors_post.php; monitor for inline comment obfuscation (/*!11111...*/) and UNION-based payloads in that parameter.
  • Payload uses MySQL versioned inline comments (/*!11111UNION*/, /*!11111SELECT*/, /*!11111CONCAT_WS*/) to bypass WAF/filters; detect requests to authors_post.php containing `/*!` sequences in query parameters.
  • Detect the classic SQL injection terminator `--+-` in HTTP query strings targeting authors_post.php, combined with hex-encoded values (0x...) indicative of UNION SELECT data exfiltration.
  • ·The exploit PoC uses `localhost` as the target host; in real-world attacks the hostname will vary — detection rules should match on the path `/authors_post.php` and the `author` parameter pattern rather than the host.
  • ·The `[PATH]` portion of the URL is variable and depends on the installation directory of Super Cms Blog Pro 1.0; detection signatures must account for arbitrary sub-paths before `authors_post.php`.

CVSS provenance

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.