CVE-2025-5696 – This critical SQL injection vulnerability in Br... (How to Fix)

Q: What is the severity of CVE-2025-5696?

CVE-2025-5696 has a CVSS score of 6.3 (MEDIUM). This critical SQL injection vulnerability in Brilliance Golden Link Secondary System allows remote attackers to execute arbitrary SQL commands by manipulating the 'clientname' parameter in the /storagework/rentChangeCheckInfoPage.htm file. Organizations using this system up to version 20250424 are affected, potentially exposing sensitive database information.

📋 TL;DR

This critical SQL injection vulnerability in Brilliance Golden Link Secondary System allows remote attackers to execute arbitrary SQL commands by manipulating the 'clientname' parameter in the /storagework/rentChangeCheckInfoPage.htm file. Organizations using this system up to version 20250424 are affected, potentially exposing sensitive database information.

💻 Affected Systems

Products:

Brilliance Golden Link Secondary System

Versions: Up to and including 20250424

Operating Systems: Unknown - likely web application platform independent

Default Config Vulnerable: ⚠️ Yes

Notes: Affects the specific file /storagework/rentChangeCheckInfoPage.htm with the clientname parameter.

📦 What is this software?

Golden Link Secondary System by Brilliance

View all CVEs affecting Golden Link Secondary System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data exfiltration, modification, or deletion; potential privilege escalation to system-level access.

🟠

Likely Case

Unauthorized data access and extraction of sensitive information from the database.

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to non-critical data.

🌐 Internet-Facing: HIGH - Attack can be initiated remotely without authentication.

🏢 Internal Only: MEDIUM - Internal attackers could exploit, but external threat is more significant.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit details have been publicly disclosed on GitHub, making exploitation straightforward for attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found in provided references

Restart Required: No

Instructions:

No official patch available. Check vendor website for updates beyond version 20250424.

🔧 Temporary Workarounds

Web Application Firewall (WAF) Rules

all

Implement WAF rules to block SQL injection patterns targeting the clientname parameter

Input Validation Filter

all

Add server-side input validation to sanitize the clientname parameter

🧯 If You Can't Patch

Block external access to /storagework/rentChangeCheckInfoPage.htm via network controls
Implement database user with minimal necessary permissions to limit potential damage

🔍 How to Verify

Check if Vulnerable:

Check if system version is 20250424 or earlier and if /storagework/rentChangeCheckInfoPage.htm exists with clientname parameter

Check Version:

Check system documentation or admin interface for version information

Verify Fix Applied:

Verify version is newer than 20250424 and test SQL injection attempts are properly blocked

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in database logs
Multiple failed login attempts from single IP
Requests to /storagework/rentChangeCheckInfoPage.htm with SQL keywords in parameters

Network Indicators:

HTTP requests containing SQL injection payloads in clientname parameter
Unusual database connection patterns

SIEM Query:

source="web_logs" AND uri="/storagework/rentChangeCheckInfoPage.htm" AND (param="clientname" AND value CONTAINS "' OR" OR value CONTAINS "UNION" OR value CONTAINS "SELECT")

📊 Metadata

CVE ID: CVE-2025-5696

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.05% exploit probability (14.3th percentile)

Published: June 5, 2025

Last Updated: November 6, 2025

🔗 References

https://github.com/K-mxredo/MXdocument/blob/K-mxredo-blob/%E9%BB%84%E9%87%91%E9%80%9Astorageworkrent-ChangeCheckInfoPage.htm.md Broken Link
https://vuldb.com/?ctiid.311212 Permissions Required,VDB Entry
https://vuldb.com/?id.311212 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.588316 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-5696, you might also want to check these: