Volerion logoVolerion
Volerion logoVolerion

Ywoa SQL Injection Vulnerability in UserMapper.xml

Vulnerability

A critical SQL injection vulnerability has been identified in Ywoa versions prior to 2024.07.03. The issue arises in the 'listNameBySql' function within 'com/cloudweb/oa/mapper/xml/UserMapper.xml'. This vulnerability allows remote attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification. The vulnerability has been publicly disclosed and is known to be exploitable.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can interfere with the application's database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

The vulnerability can be reproduced by sending a crafted request to the 'user/list?isValid' interface. The request should include input that is not properly sanitized, allowing for SQL injection into the 'listNameBySql' function. Vulnerable targets can be found using Google Hacking by searching for 'inurl:com/cloudweb/oa/mapper/xml/UserMapper.xml'.

Remediation

Users are advised to upgrade to Ywoa version 2024.07.04 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
5.0
exploitability
4.6
remediation
7.7
relevance
0.0
threat
6.4
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.