Login Sign Up

CVE-2024-12480

6.3 MEDIUM
SQL Injection

📋 TL;DR

This is a critical SQL injection vulnerability in cjbi wetech-cms versions 1.0-1.2 that allows remote attackers to execute arbitrary SQL commands through the searchTopic function. Attackers can potentially access, modify, or delete database content. All users running affected versions are vulnerable.

💻 Affected Systems

Products:
  • cjbi wetech-cms
Versions: 1.0, 1.1, 1.2
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of affected versions are vulnerable by default.

📦 What is this software?

Wetech Cms by Cjbi

View all CVEs affecting Wetech Cms →

Wetech Cms by Cjbi

View all CVEs affecting Wetech Cms →

Wetech Cms by Cjbi

View all CVEs affecting Wetech Cms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data destruction, and potential remote code execution if database permissions allow.

🟠

Likely Case

Unauthorized data access, data manipulation, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available and SQL injection is a well-understood attack vector.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Vendor did not respond to disclosure. Consider migrating to alternative software or implementing workarounds.

🔧 Temporary Workarounds

Implement Input Validation

all

Add strict input validation for the 'con' parameter in searchTopic function to reject SQL special characters.

Use Parameterized Queries

all

Modify TopicDao.java to use prepared statements instead of string concatenation for SQL queries.

🧯 If You Can't Patch

  • Deploy a web application firewall (WAF) with SQL injection protection rules
  • Isolate the vulnerable system behind network segmentation and restrict access

🔍 How to Verify

Check if Vulnerable:

Check if running wetech-cms version 1.0, 1.1, or 1.2. Review TopicDao.java for string concatenation in searchTopic function.

Check Version:

Check application configuration files or database version tables for wetech-cms version information.

Verify Fix Applied:

Test the search functionality with SQL injection payloads to confirm they are blocked. Review code changes to ensure parameterized queries are implemented.

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in application logs
  • Multiple failed login attempts or search queries with SQL syntax

Network Indicators:

  • HTTP requests containing SQL keywords like UNION, SELECT, INSERT in search parameters

SIEM Query:

source="application_logs" AND ("SQL syntax" OR "You have an error in your SQL syntax")

📊 Metadata

CVE ID: CVE-2024-12480
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
Published: December 12, 2024
Last Updated: December 13, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-12480, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)