Login Sign Up

CVE-2022-38922

9.8 CRITICAL
SQL Injection

📋 TL;DR

BluePage CMS through version 3.9 has a SQL injection vulnerability in the 'users-cookie-settings' token due to insufficient sanitization of HTTP Cookie headers. Attackers can exploit this using time-based blind SQL injection payloads to potentially extract, modify, or delete database contents. All users running BluePage CMS versions up to 3.9 are affected.

💻 Affected Systems

Products:
  • BluePage CMS
Versions: through 3.9
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all installations up to version 3.9 regardless of configuration.

📦 What is this software?

Bluepage Cms by Iss Oberlausitz

View all CVEs affecting Bluepage Cms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, authentication bypass, remote code execution, or complete system takeover.

🟠

Likely Case

Database information disclosure, user credential theft, and potential privilege escalation.

🟢

If Mitigated

Limited impact with proper input validation, WAF rules, and database permissions in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Time-based blind SQL injection requires no authentication and has public proof-of-concept available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.bluepage-cms.com/index.php

Restart Required: No

Instructions:

Check vendor website for updates. If no patch available, consider migrating to alternative CMS or implementing workarounds.

🔧 Temporary Workarounds

WAF Rule Implementation

all

Deploy web application firewall rules to block SQL injection patterns in cookie headers.

Input Validation Filter

all

Implement custom input validation to sanitize cookie values before processing.

🧯 If You Can't Patch

  • Implement strict input validation for all cookie parameters
  • Restrict database user permissions to minimum required

🔍 How to Verify

Check if Vulnerable:

Test with time-based SQL injection payload in cookie header: 'users-cookie-settings' parameter with SLEEP() function.

Check Version:

Check CMS version in admin panel or configuration files.

Verify Fix Applied:

Verify that time-based payloads no longer cause delayed responses and input is properly sanitized.

📡 Detection & Monitoring

Log Indicators:

  • Unusual cookie values containing SQL keywords
  • Multiple requests with similar patterns but varying cookie parameters
  • Requests with SLEEP() or BENCHMARK() in cookie headers

Network Indicators:

  • HTTP requests with SQL injection patterns in cookie headers
  • Unusually long response times for specific cookie values

SIEM Query:

http.cookie contains "SLEEP" OR http.cookie contains "BENCHMARK" OR http.cookie contains "UNION"

📊 Metadata

CVE ID: CVE-2022-38922
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: April 3, 2023
Last Updated: February 18, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-38922, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)