Login Sign Up

CVE-2023-37682

9.8 CRITICAL
SQL Injection

📋 TL;DR

Judging Management System v1.0 contains a SQL injection vulnerability in the deductScores.php endpoint via the id parameter. This allows attackers to execute arbitrary SQL commands on the database. Any organization using this specific software version is affected.

💻 Affected Systems

Products:
  • Judging Management System
Versions: v1.0
Operating Systems: Any OS running PHP and MySQL
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the specific version from sourcecodester.com; custom deployments may vary.

📦 What is this software?

Judging Management System by Judging Management System Project

View all CVEs affecting Judging Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data manipulation, or remote code execution via database functions.

🟠

Likely Case

Unauthorized data access, modification of judging scores, and potential privilege escalation.

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to non-critical data.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

SQL injection via GET/POST parameter is straightforward to exploit with common tools like sqlmap.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None known

Restart Required: No

Instructions:

No official patch available. Consider manual code fixes or replacing the software.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add parameterized queries or input validation to deductScores.php to sanitize the id parameter.

Modify /php-jms/deductScores.php to use prepared statements with PDO or mysqli.

Web Application Firewall (WAF)

all

Deploy a WAF to block SQL injection patterns targeting the vulnerable endpoint.

Configure WAF rules to block requests containing SQL keywords to /php-jms/deductScores.php.

🧯 If You Can't Patch

  • Restrict network access to the application to trusted IPs only.
  • Implement database user permissions with least privilege to limit potential damage.

🔍 How to Verify

Check if Vulnerable:

Test the /php-jms/deductScores.php endpoint with SQL injection payloads (e.g., id=1' OR '1'='1).

Check Version:

Check the software version in documentation or source code files.

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and that input is properly sanitized.

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs, multiple requests to deductScores.php with suspicious parameters.

Network Indicators:

  • HTTP requests to /php-jms/deductScores.php containing SQL keywords like UNION, SELECT, or OR.

SIEM Query:

source="web_logs" AND uri="/php-jms/deductScores.php" AND (param="*id=*'*" OR param="*id=* OR *" OR param="*id=* UNION *")

📊 Metadata

CVE ID: CVE-2023-37682
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: August 8, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-37682, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)