Login Sign Up

CVE-2020-19108

9.8 CRITICAL
Remote Code Execution SQL Injection

📋 TL;DR

CVE-2020-19108 is a critical SQL injection vulnerability in Online Book Store v1.0 that allows remote attackers to execute arbitrary SQL commands through the pubid parameter. This affects all deployments of this specific PHP application version. Attackers can potentially compromise the entire database and execute arbitrary code on the server.

💻 Affected Systems

Products:
  • Online Book Store
Versions: v1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all installations of Online Book Store v1.0 regardless of configuration.

📦 What is this software?

Online Book Store Project In Php by Projectworlds

View all CVEs affecting Online Book Store Project In Php →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data destruction, and remote code execution on the server, potentially resulting in full system takeover.

🟠

Likely Case

Database information disclosure, data manipulation, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries preventing SQL injection.

🌐 Internet-Facing: HIGH - The vulnerability is exploitable via web interface without authentication.
🏢 Internal Only: MEDIUM - Still exploitable by internal users or attackers who gain internal network access.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Simple SQL injection via GET parameter with public proof-of-concept available in GitHub issues.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: No official vendor advisory found

Restart Required: No

Instructions:

1. Replace vulnerable bookPerPub.php file with secure version using parameterized queries. 2. Manually implement input validation and SQL injection protection. 3. Consider migrating to a maintained book store application.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns in pubid parameter

Input Validation Filter

all

Add input validation to only accept numeric values for pubid parameter

Add to bookPerPub.php: if(!is_numeric($_GET['pubid'])) { die('Invalid input'); }

🧯 If You Can't Patch

  • Isolate the application behind a reverse proxy with strict input filtering
  • Implement network segmentation to limit database access from application server

🔍 How to Verify

Check if Vulnerable:

Test bookPerPub.php with payload: bookPerPub.php?pubid=1' OR '1'='1

Check Version:

Check PHP files for version comments or project documentation

Verify Fix Applied:

Test with same payload - should return error or no SQL injection behavior

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs
  • Multiple requests with SQL keywords in pubid parameter
  • Long or malformed pubid parameter values

Network Indicators:

  • HTTP requests to bookPerPub.php containing SQL injection patterns
  • Unusual database query patterns from application server

SIEM Query:

source="web_logs" AND uri="*bookPerPub.php*" AND (query="*pubid=*'*" OR query="*pubid=*%27*")

📊 Metadata

CVE ID: CVE-2020-19108
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: May 6, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-19108, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)