SQL Injection Vulnerability in OrangeHRM Buzz Module
CVE-2020-29437

8.1HIGH

Key Information:

Vendor

Orangehrm

Status
Orangehrm
Vendor
CVE Published:
5 January 2021

What is CVE-2020-29437?

The Buzz module of OrangeHRM version 4.6 is susceptible to SQL injection through the loadMorePostsForm[profileUserId] parameter. This flaw allows remote authenticated attackers to execute arbitrary SQL commands via the buzz/loadMoreProfile endpoint. The exploitation of this vulnerability could lead to unauthorized access to sensitive data and manipulation of the database, highlighting the importance of implementing security best practices and timely updates.

References

https://github.com/orangehrm/orangehrm/issues/695
x_refsource_MISC
https://www.horizon3.ai/disclosures/orangehrm-sqli.html
x_refsource_MISC
https://github.com/orangehrm/orangehrm/pull/699
x_refsource_MISC

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.