Login Sign Up

CVE-2022-25399

9.8 CRITICAL
SQL Injection

📋 TL;DR

Simple Real Estate Portal System v1.0 contains a SQL injection vulnerability in the id parameter that allows attackers to execute arbitrary SQL commands. This affects all users running the vulnerable version, potentially leading to data theft, modification, or system compromise.

💻 Affected Systems

Products:
  • Simple Real Estate Portal System
Versions: v1.0
Operating Systems: All platforms running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all installations of v1.0 regardless of configuration. The system appears to be a small third-party application with limited vendor support.

📦 What is this software?

Simple Real Estate Portal System by Simple Real Estate Portal System Project

View all CVEs affecting Simple Real Estate Portal System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data exfiltration, data manipulation, privilege escalation to system-level access, and potential remote code execution.

🟠

Likely Case

Unauthorized access to sensitive real estate data (client information, property details, financial records), data manipulation, and potential authentication bypass.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries preventing SQL injection execution.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

SQL injection via id parameter is straightforward to exploit. Public proof-of-concept code exists in GitHub repositories.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: No official vendor advisory found

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation and parameterized queries for the id parameter

Modify PHP code to use prepared statements: $stmt = $conn->prepare('SELECT * FROM table WHERE id = ?'); $stmt->bind_param('i', $id);

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns

Configure WAF to block requests containing SQL keywords in id parameter

🧯 If You Can't Patch

  • Isolate the application in a segmented network with strict access controls
  • Implement database-level protections: use least privilege accounts, enable audit logging

🔍 How to Verify

Check if Vulnerable:

Test id parameter with SQL injection payloads like: ' OR '1'='1

Check Version:

Check application version in admin panel or source code files

Verify Fix Applied:

Verify that SQL injection payloads no longer execute and return error messages

📡 Detection & Monitoring

Log Indicators:

  • Unusual database queries
  • Multiple failed login attempts via SQL injection patterns
  • Long or malformed id parameter values

Network Indicators:

  • HTTP requests with SQL keywords in parameters
  • Unusual database connection patterns from web server

SIEM Query:

source="web_logs" AND (id="*' OR*" OR id="*UNION*" OR id="*SELECT*" OR id="*--*" OR id="*;*" OR id="*/*")

📊 Metadata

CVE ID: CVE-2022-25399
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: March 2, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-25399, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)