cbcvebase.
CVE-2022-1883
published 2022-05-25

CVE-2022-1883: SQL Injection in GitHub repository camptocamp/terraboard prior to 2.2.0.

PriorityP277high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
6.42%
92.8th percentile
SQL Injection in GitHub repository camptocamp/terraboard prior to 2.2.0.

Affected

2 ranges
VendorProductVersion rangeFixed in
camptocampcamptocamp_terraboard>= unspecified < 2.2.02.2.0
camptocampterraboard< 2.2.02.2.0

Detection & IOCsextracted from sources · hover to see the quote

otherTerraboard =7'
  • HTTP response body contains both '"page":' and '"results":' JSON keys simultaneously — indicative of a Terraboard API endpoint response that may be targeted for SQL injection
  • Nuclei template targets HTTP 200 responses from Terraboard endpoints; detection should look for JSON body with both 'page' and 'results' fields in conjunction with SQL injection payloads in query parameters
  • CVE-2022-1883 affects camptocamp/terraboard versions prior to 2.2.0; any Terraboard instance below this version should be considered vulnerable to SQL injection
  • ·The Nuclei template digest is present but no source URL was provided for the template document; provenance of the template cannot be fully verified
  • ·The SQL injection probe payload ('=7'') is a minimal detection string; it should be used as part of a broader SQL injection test suite and not relied upon as a standalone indicator

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.6CRITICALCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vulncheck8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.