Vulnerability Details : CVE-2017-7581
Public exploit exists!
SQL injection vulnerability in NewsController.php in the News module 5.3.2 and earlier for TYPO3 allows unauthenticated users to execute arbitrary SQL commands via vectors involving overwriteDemand for order and OrderByAllowed.
Vulnerability category: Sql Injection
Exploit prediction scoring system (EPSS) score for CVE-2017-7581
Probability of exploitation activity in the next 30 days: 93.76%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 99 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2017-7581
-
TYPO3 News Module SQL Injection
Disclosure Date: 2017-04-06First seen: 2020-04-26auxiliary/admin/http/typo3_news_module_sqliThis module exploits a SQL Injection vulnerability In TYPO3 NewsController.php in the news module 5.3.2 and earlier. It allows an unauthenticated user to execute arbitrary SQL commands via vectors involving overwriteDemand and OrderByAllowed. The SQL injection
CVSS scores for CVE-2017-7581
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
|
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2017-7581
-
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-7581
-
https://www.ambionics.io/blog/typo3-news-module-sqli
TYPO3 News module SQL InjectionExploit;Patch;Technical Description;Third Party Advisory
Products affected by CVE-2017-7581
- cpe:2.3:a:news_system_project:news_system:*:*:*:*:*:typo3:*:*