CVE-2025-5569
published 2025-06-04CVE-2025-5569: A vulnerability was found in IdeaCMS up to 1.7 and classified as critical. This issue affects the function Article/Goods of the file…
PriorityP261high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
1.27%
66.1th percentile
A vulnerability was found in IdeaCMS up to 1.7 and classified as critical. This issue affects the function Article/Goods of the file /api/v1.index.article/getList.html. The manipulation of the argument Field leads to sql injection. The attack may be initiated remotely. Upgrading to version 1.8 is able to address this issue. The patch is named 935aceb4c21338633de6d41e13332f7b9db4fa6a. It is recommended to upgrade the affected component.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ideacms | ideacms | <= 1.7 | — |
| ideacms | ideacms | — | — |
| ideacms | ideacms | — | — |
| ideacms | ideacms | — | — |
| ideacms | ideacms | — | — |
| ideacms | ideacms | — | — |
| ideacms | ideacms | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation attempts by monitoring GET requests to /api/v1.index.article/getList.html or /api/v1.index.goods/getList.html with a 'field' parameter containing SQL expressions (e.g., md5(), commas separating column names with functions). ↗
- →Match HTTP 200 responses containing both 'id":1' and 'data":' alongside an MD5 hash value in the body to confirm successful SQL injection exploitation. ↗
- →Use the Shodan favicon hash -1033616879 or FOFA icon_hash "-1033616879" to identify exposed IdeaCMS instances for proactive scanning. ↗
- →The vulnerability is unauthenticated (PR:N, UI:N); no session or credentials are required. Alert on any external/anonymous access to the affected endpoints with non-trivial 'field' parameter values. ↗
- ·The Nuclei template uses a time-based/MD5 blind detection approach with a fixed large numeric value (999999999) injected via the 'field' parameter. Real-world payloads may vary; tune detection rules to cover broader SQL function injection patterns in the 'field' parameter, not just md5(). ↗
- ·The template sets stop-at-first-match: true and only sends a maximum of 2 requests, targeting both the article and goods endpoints. Detection coverage must include both /api/v1.index.article/getList.html and /api/v1.index.goods/getList.html. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv4.05.3MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
IdeaCMS <= 1.7 - SQL Injection
nuclei·CVSS 5.3
CVE-2025-5569 [MEDIUM] IdeaCMS <= 1.7 - SQL Injection
IdeaCMS <= 1.7 - SQL Injection
IdeaCMS up to 1.7 is vulnerable to SQL injection via the field parameter in article and product query interfaces. This template uses a time-based payload to safely detect the vulnerability.
Template:
id: CVE-2025-5569
info:
name: IdeaCMS <= 1.7 - SQL Injection
author: ritikchaddha
severity: critical
description: |
IdeaCMS up to 1.7 is vulnerable to SQL injection via the field parameter in article and product query interfaces. This template uses a time-based payload to safely detect the vulnerability.
impact: |
Unauthenticated attackers can extract sensitive data from the database through SQL injection in the field parameter, potentially compromising user information and system credentials.
remediation: |
Upgrade IdeaCMS to a version later than 1.7 that pr
No writeups or analysis indexed.
https://gitee.com/ideacms/ideacms/commit/935aceb4c21338633de6d41e13332f7b9db4fa6ahttps://gitee.com/ideacms/ideacms/issues/ICBVWEhttps://gitee.com/ideacms/ideacms/issues/ICBVWE#note_42016626_linkhttps://gitee.com/ideacms/ideacms/releases/tag/v1.8https://vuldb.com/?ctiid.311027https://vuldb.com/?id.311027https://vuldb.com/?submit.588372
2025-06-04
Published