CVE-2022-28032
published 2022-04-12CVE-2022-28032: AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php
PriorityP261critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
5.92%
92.3th percentile
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| thedigitalcraft | atomcms | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Time-based blind SQL injection: send GET request to /admin/ajax/pages.php with id parameter containing sleep(6); a response duration >= 6 seconds with HTTP 200 and body containing 'Page Deleted' indicates successful exploitation. ↗
- →Response body should contain the string 'Page Deleted' as part of the exploitation confirmation condition. ↗
- →Detection requires all three conditions simultaneously: response duration >= 6 seconds, HTTP status 200, and body containing 'Page Deleted'. ↗
- ·The exploit uses a 20-second HTTP timeout to accommodate the time-based sleep payload; standard shorter timeouts will cause false negatives. ↗
- ·Vulnerability is unauthenticated (PR:N) per CVSS scoring, meaning no credentials are required to exploit the SQL injection endpoint. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
Atom CMS v2.0 - SQL Injection
nuclei·CVSS 9.8
CVE-2022-28032 [CRITICAL] Atom CMS v2.0 - SQL Injection
Atom CMS v2.0 - SQL Injection
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php
Template:
id: CVE-2022-28032
info:
name: Atom CMS v2.0 - SQL Injection
author: theamanrawat
severity: critical
description: |
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data manipulation.
remediation: Fixed in version Atom CMS v2.1
reference:
- https://github.com/thedigicraft/Atom.CMS/issues/263
- https://nvd.nist.gov/vuln/detail/CVE-2022-28032
- https://github.com/ARPSyndicate/cvemon
- https://github.com/bornrootcom/fictional-memory
classification:
cvss-metrics: CVSS:3.1/AV:
No writeups or analysis indexed.
2022-04-12
Published