SQL injection in GLPI
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2016-7508 |
| CWE-ID | CWE-89 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software |
GLPI Web applications / CRM systems |
| Vendor | glpi-project |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) SQL injection
EUVDB-ID: #VU7221
Risk: Low
CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2016-7508
CWE-ID:
CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Exploit availability: Yes
DescriptionThe vulnerability allows a remote authenticated attacker to execute arbitrary SQL commands.
The weakness exists due to improper validation of user-supplied input. A remote attacker can supply a specially crafted character when the database is configured to use Big5 Asian encoding and execute arbitrary SQL commands on the system.
Install update from vendor's website.
GLPI: 0.90.4
CPE2.3 External linkshttps://github.com/glpi-project/glpi/issues/1047
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
