CVE-2021-3278
published 2021-01-26CVE-2021-3278: Local Service Search Engine Management System 1.0 has a vulnerability through authentication bypass using SQL injection . Using this vulnerability, an attacker…
PriorityP272critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
25.27%
97.7th percentile
Local Service Search Engine Management System 1.0 has a vulnerability through authentication bypass using SQL injection . Using this vulnerability, an attacker can bypass the login page.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| local_services_search_engine_management_system_project | local_services_search_engine_management_system | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect POST requests to /lssems/admin/ajax.php with action=login parameter containing SQL injection patterns (e.g., OR 1=1# or URL-encoded equivalents %3D1%23) in username or password fields. ↗
- →Look for the X-Requested-With: XMLHttpRequest header combined with Content-Type: application/x-www-form-urlencoded on the login endpoint, as the exploit uses an AJAX-based login bypass. ↗
- →Flag POST body payloads containing URL-encoded SQL injection strings targeting both username and password fields simultaneously, specifically the pattern '+or+1%3D1%23. ↗
- ·The exploit was tested on a local/development environment (localhost:8080 with XAMPP); in production deployments the base path /lssems/ may differ, so detection rules should match on the relative path /admin/ajax.php?action=login rather than the full host-specific URL. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/162919/Local-Service-Search-Engine-Management-System-1.0-SQL-Injection.htmlhttps://www.exploit-db.com/exploits/49163https://www.sourcecodester.com/php/14607/local-service-search-engine-management-system-using-phpmysqli-source-code.htmlhttp://packetstormsecurity.com/files/162919/Local-Service-Search-Engine-Management-System-1.0-SQL-Injection.htmlhttps://www.exploit-db.com/exploits/49163https://www.sourcecodester.com/php/14607/local-service-search-engine-management-system-using-phpmysqli-source-code.html
2021-01-26
Published