CVE-2022-25488
published 2022-03-15CVE-2022-25488: Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
PriorityP275critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
7.15%
93.5th percentile
Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| thedigitalcraft | atomcms | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Exploit sends a GET request to /admin/ajax/avatar.php with a UNION-based SQL injection payload in the 'id' parameter using id=-1 union select md5(<num>)# ↗
- →Successful exploitation is confirmed when the HTTP 200 response body contains both the md5 hash of the injected number and the string 'avatar-container' ↗
- →The vulnerability is unauthenticated (PR:N) and network-reachable (AV:N), meaning no credentials are required to exploit /admin/ajax/avatar.php ↗
- ·The Nuclei template uses a numeric sentinel value of 999999999 and its MD5 hash as the oracle for blind/union-based detection; defenders should tune detection rules to look for UNION SELECT patterns in the id parameter rather than this specific value alone ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5m5q-vw35-8964: Atom CMS v2
ghsa_unreviewed·2022-03-16
CVE-2022-25488 [CRITICAL] CWE-89 GHSA-5m5q-vw35-8964: Atom CMS v2
Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
VulnCheck
thedigitalcraft atomcms Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
vulncheck·2022·CVSS 9.8
CVE-2022-25488 [CRITICAL] thedigitalcraft atomcms Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
thedigitalcraft atomcms Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
Affected: thedigitalcraft atomcms
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://app.crowdsec.net/cti/cve-explorer/CVE-2022-25488
No detection rules found.
Nuclei
Atom CMS v2.0 - SQL Injection
nuclei·CVSS 9.8
CVE-2022-25488 [CRITICAL] Atom CMS v2.0 - SQL Injection
Atom CMS v2.0 - SQL Injection
Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
Template:
id: CVE-2022-25488
info:
name: Atom CMS v2.0 - SQL Injection
author: theamanrawat
severity: critical
description: |
Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data manipulation.
remediation: Fixed in version Atom CMS v2.1
reference:
- https://github.com/thedigicraft/Atom.CMS/issues/257
- https://nvd.nist.gov/vuln/detail/CVE-2022-25488
- https://github.com/ARPSyndicate/cvemon
- https://
2022-03-15
Published
Exploited in the wild