CVE-2022-1883
published 2022-05-25CVE-2022-1883: SQL Injection in GitHub repository camptocamp/terraboard prior to 2.2.0.
PriorityP277high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
6.42%
92.8th percentile
SQL Injection in GitHub repository camptocamp/terraboard prior to 2.2.0.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| camptocamp | camptocamp_terraboard | >= unspecified < 2.2.0 | 2.2.0 |
| camptocamp | terraboard | < 2.2.0 | 2.2.0 |
Detection & IOCsextracted from sources · hover to see the quote
otherTerraboard =7'
- →HTTP response body contains both '"page":' and '"results":' JSON keys simultaneously — indicative of a Terraboard API endpoint response that may be targeted for SQL injection
- →Nuclei template targets HTTP 200 responses from Terraboard endpoints; detection should look for JSON body with both 'page' and 'results' fields in conjunction with SQL injection payloads in query parameters
- →CVE-2022-1883 affects camptocamp/terraboard versions prior to 2.2.0; any Terraboard instance below this version should be considered vulnerable to SQL injection ↗
- ·The Nuclei template digest is present but no source URL was provided for the template document; provenance of the template cannot be fully verified
- ·The SQL injection probe payload ('=7'') is a minimal detection string; it should be used as part of a broader SQL injection test suite and not relied upon as a standalone indicator
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.6CRITICALCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vulncheck8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
Terraboard <2.2.0 - SQL Injection
nuclei·CVSS 8.8
CVE-2022-1883 [HIGH] Terraboard <2.2.0 - SQL Injection
Terraboard =7'
- type: word
part: body
words:
- '"page":'
- '"results":'
condition: and
- type: status
status:
- 200
# digest: 4b0a0048304602210085be7a6f1f42b2b5d2f1d1a138e01e0125fd621e4b991977a838dced32a35b78022100bfa1e9b610b55fb8b1139979a30064158b2a88328ba7a91052626932d46366b4:922c64590222798bb761d5b6d8e72950
https://github.com/camptocamp/terraboard/commit/2a5dbaac015dc0714b41a59995e24f5767f89ddchttps://huntr.dev/bounties/a25d15bd-cd23-487e-85cd-587960f1b9e7https://github.com/camptocamp/terraboard/commit/2a5dbaac015dc0714b41a59995e24f5767f89ddchttps://huntr.dev/bounties/a25d15bd-cd23-487e-85cd-587960f1b9e7
2022-05-25
Published
Exploited in the wild