Login Sign Up

CVE-2024-25867

9.1 CRITICAL
SQL Injection

📋 TL;DR

This SQL injection vulnerability in CodeAstro Membership Management System v1.0 allows remote attackers to execute arbitrary SQL commands through the membershipType and membershipAmount parameters in add_type.php. Attackers can potentially read, modify, or delete database content, and in some cases gain full system control. All deployments of this specific PHP application version are affected.

💻 Affected Systems

Products:
  • CodeAstro Membership Management System
Versions: v1.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of v1.0 are vulnerable regardless of configuration.

📦 What is this software?

Membership Management System by Codeastro

View all CVEs affecting Membership Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data destruction, authentication bypass, and potential remote code execution through database functions.

🟠

Likely Case

Unauthorized data access, privilege escalation, and potential administrative account takeover.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries preventing SQL injection.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Simple SQL injection via GET/POST parameters with public proof-of-concept available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None known

Restart Required: No

Instructions:

No official patch available. Implement parameterized queries and input validation in add_type.php.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add server-side validation and sanitization for membershipType and membershipAmount parameters

Modify add_type.php to use prepared statements with parameterized queries

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns

Configure WAF to detect and block SQL injection attempts on add_type.php

🧯 If You Can't Patch

  • Restrict access to add_type.php to authorized administrators only
  • Implement network segmentation to isolate the vulnerable system

🔍 How to Verify

Check if Vulnerable:

Test add_type.php with SQL injection payloads in membershipType or membershipAmount parameters

Check Version:

Check application version in source code or configuration files

Verify Fix Applied:

Verify that parameterized queries are implemented and SQL injection attempts are rejected

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in database logs
  • Multiple failed login attempts after add_type.php access
  • SQL syntax errors in web server logs

Network Indicators:

  • Unusual database connections from web server
  • SQL keywords in HTTP requests to add_type.php

SIEM Query:

source="web_logs" AND uri="/add_type.php" AND (request CONTAINS "UNION" OR request CONTAINS "SELECT" OR request CONTAINS "INSERT" OR request CONTAINS "DELETE")

📊 Metadata

CVE ID: CVE-2024-25867
CVSS v3 Score: 9.1 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-89
Published: February 28, 2024
Last Updated: April 1, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-25867, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)