Primary

Context

Go-CMS SQL Injection Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A SQL injection vulnerability has been identified in Go-CMS version 1.1.10. This vulnerability allows remote attackers to execute arbitrary code by sending a crafted payload. The issue arises when exporting user or role data, as the application improperly concatenates IDs into SQL queries, creating an opportunity for injection.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing arbitrary code on the server.

Reproduction

To reproduce this vulnerability, send a POST request to the '/cms/roles/export' or '/cms/users/export' endpoint. Include a payload in the 'ids' field that exploits the SQL query handling, such as injecting SQL commands that could be executed by the database.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

6.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

6.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Go-CMS SQL Injection Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating