Login Sign Up

CVE-2022-30411

7.2 HIGH
SQL Injection

📋 TL;DR

CVE-2022-30411 is an SQL injection vulnerability in Covid-19 Travel Pass Management System v1.0 that allows attackers to execute arbitrary SQL commands via the 'id' parameter in the admin interface. This affects all organizations using this specific travel pass management software. Attackers could potentially access, modify, or delete sensitive travel and personal data.

💻 Affected Systems

Products:
  • Covid-19 Travel Pass Management System
Versions: v1.0
Operating Systems: Any OS running PHP web applications
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects the specific travel pass management system from vendor oretnom23. Requires admin panel access path.

📦 What is this software?

Covid 19 Travel Pass Management System by Covid 19 Travel Pass Management System Project

View all CVEs affecting Covid 19 Travel Pass Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data destruction, or full system takeover via SQL injection to RCE chaining.

🟠

Likely Case

Unauthorized access to sensitive personal and travel data, including PII, vaccination records, and travel documents.

🟢

If Mitigated

Limited impact with proper input validation, parameterized queries, and WAF protection in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit requires access to admin interface but SQL injection is straightforward via URL parameter manipulation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation for the 'id' parameter to only accept expected data types

Modify PHP code to validate id parameter: if(!is_numeric($_GET['id'])) { die('Invalid input'); }

Parameterized Queries Implementation

all

Replace dynamic SQL queries with prepared statements using PDO or MySQLi

$stmt = $pdo->prepare('SELECT * FROM individuals WHERE id = ?'); $stmt->execute([$id]);

🧯 If You Can't Patch

  • Deploy Web Application Firewall (WAF) with SQL injection protection rules
  • Restrict access to admin interface using IP whitelisting and strong authentication

🔍 How to Verify

Check if Vulnerable:

Test the vulnerable endpoint: /ctpms/admin/?page=individuals/view_individual&id=1' OR '1'='1

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Test with SQL injection payloads and verify they are rejected or sanitized

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in logs
  • Multiple failed parameter manipulation attempts
  • Admin panel access from unusual IPs

Network Indicators:

  • HTTP requests with SQL keywords in URL parameters
  • Unusual database query patterns

SIEM Query:

source="web_logs" AND (url="*view_individual*" AND (param="*id=*'*" OR param="*id=* OR *" OR param="*id=* UNION *"))

📊 Metadata

CVE ID: CVE-2022-30411
CVSS v3 Score: 7.2 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: May 13, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-30411, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)