CVE-2022-31993 – Badminton Center Management System v1.0 contain... (How to Fix)

Q: What is the severity of CVE-2022-31993?

CVE-2022-31993 has a CVSS score of 9.8 (CRITICAL). Badminton Center Management System v1.0 contains a SQL injection vulnerability in the delete_service function that allows attackers to execute arbitrary SQL commands. This affects all installations of the vulnerable software version. Attackers can potentially access, modify, or delete database content.

📋 TL;DR

Badminton Center Management System v1.0 contains a SQL injection vulnerability in the delete_service function that allows attackers to execute arbitrary SQL commands. This affects all installations of the vulnerable software version. Attackers can potentially access, modify, or delete database content.

💻 Affected Systems

Products:

Badminton Center Management System

Versions: v1.0

Operating Systems: Any OS running PHP web server

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all installations of v1.0 regardless of configuration.

📦 What is this software?

Badminton Center Management System by Badminton Center Management System Project

View all CVEs affecting Badminton Center Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data destruction, authentication bypass, and potential remote code execution if database permissions allow.

🟠

Likely Case

Unauthorized data access and manipulation, potentially leading to business disruption and data breach.

🟢

If Mitigated

Limited impact if proper input validation and parameterized queries are implemented.

🌐 Internet-Facing: HIGH

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public exploit details available in GitHub repository. SQL injection via GET parameter is trivial to exploit.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None known

Restart Required: No

Instructions:

No official patch available. Implement parameterized queries and input validation in /bcms/classes/Master.php delete_service function.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy WAF with SQL injection rules to block malicious requests

Input Validation Filter

all

Add input validation to sanitize parameters before processing

Add parameter validation in Master.php before SQL execution

🧯 If You Can't Patch

Isolate the system behind a firewall with strict access controls
Implement network segmentation to limit database access from web server

🔍 How to Verify

Check if Vulnerable:

Test /bcms/classes/Master.php?f=delete_service with SQL injection payloads like ' OR '1'='1

Check Version:

Check software version in admin panel or configuration files

Verify Fix Applied:

Verify parameterized queries are implemented and test with SQL injection payloads

📡 Detection & Monitoring

Log Indicators:

Unusual SQL error messages in web logs
Multiple requests to delete_service endpoint with suspicious parameters

Network Indicators:

SQL keywords in HTTP GET parameters
Unusual database connection patterns

SIEM Query:

web.url:*Master.php?f=delete_service* AND (web.param:*OR* OR web.param:*UNION* OR web.param:*SELECT*)

📊 Metadata

CVE ID: CVE-2022-31993

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-89

Published: June 2, 2022

Last Updated: November 21, 2024

🔗 References

https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/badminton-center-management-system/SQLi-7.md Exploit,Third Party Advisory
https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/badminton-center-management-system/SQLi-7.md Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-31993, you might also want to check these: