Authorization

2018-04-2018:29:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.7%

JSON

Apache Fineract 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating exposes different REST end points to query domain specific entities with a Query Parameter ‘orderBy’ which are appended directly with SQL statements. A hacker/user can inject/draft the ‘orderBy’ query parameter by way of the “order” param in such a way to read/update the data for which he doesn’t have authorization.

CPENameOperatorVersion
fineracteq0.4.0
fineracteq0.5.0
fineracteq0.6.0
fineracteq1.0.0

Name	Operator	Version
fineract	eq	0.4.0
fineract	eq	0.5.0
fineract	eq	0.6.0
fineract	eq	1.0.0

References

www.securityfocus.com/bid/104008

lists.apache.org/thread.html/1f7fadc93500b3fe14603b132b13c18fff3d0a35e50ebd0246f325c0@%3Cdev.fineract.apache.org%3E