CVE-2018-1999022

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-1999022
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1999022.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-1999022
Downstream
Published
2018-07-23T16:29:00.227Z
Modified
2026-04-16T04:40:58.663484906Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

PEAR HTMLQuickForm version 3.2.14 contains an eval injection (CWE-95) vulnerability in HTMLQuickForm's getSubmitValue method, HTMLQuickForm's validate method, HTMLQuickFormhierselect's setOptions method, HTMLQuickFormelement's findValue method, HTMLQuickFormelement's prepareValue method. that can result in Possible information disclosure, possible impact on data integrity and execution of arbitrary code. This attack appear to be exploitable via A specially crafted query string could be utilised, e.g. http://www.example.com/admin/addpracticetype_id[1]=fubar%27])%20OR%20die(%27OOK!%27);%20//&mode=live. This vulnerability appears to have been fixed in 3.2.15.

References

Affected packages

Git / github.com/civicrm/civicrm-core

Affected ranges

Type
GIT
Repo
https://github.com/civicrm/civicrm-core
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
52d4ce5bdaed5d25903d47226afb56ece2769c88
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
9ce0633cb2265abde8a7d7c649568ec7763ab4c2
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "4.6.37"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.3.0"
        }
    ]
}

Affected versions

4.*
4.3.beta2
4.3.beta3
4.3.beta4
4.3.beta5
4.4.alpha1
4.4.alpha2
4.4.alpha3
4.4.beta1
4.4.beta2
4.4.beta3
4.4.beta4
4.5.alpha1
4.5.alpha2
4.5.beta1
4.5.beta2
4.5.beta3
4.5.beta4
4.5.beta5
4.5.beta6
4.5.beta7
4.5.beta8
4.6.0
4.6.1
4.6.10
4.6.11
4.6.12
4.6.13
4.6.14
4.6.15
4.6.16
4.6.17
4.6.18
4.6.19
4.6.2
4.6.20
4.6.21
4.6.22
4.6.23
4.6.24
4.6.25
4.6.26
4.6.27
4.6.28
4.6.29
4.6.3
4.6.30
4.6.31
4.6.32
4.6.33
4.6.34
4.6.35
4.6.36
4.6.37
4.6.4
4.6.5
4.6.6
4.6.7
4.6.8
4.6.9
4.6.alpha1
4.6.alpha2
4.6.alpha3
4.6.alpha4
4.6.alpha5
4.6.alpha6
4.6.alpha7
4.6.beta1
4.6.beta2
4.6.beta3
4.6.beta4
4.6.beta5
4.7.0
4.7.1
4.7.10-pre1
4.7.2
4.7.3
4.7.4
4.7.5
4.7.6
4.7.alpha1
4.7.alpha2
4.7.alpha3
4.7.alpha4
4.7.alpha5
4.7.beta1
4.7.beta2
4.7.beta3
4.7.beta4
4.7.beta5
4.7.beta6
4.7.beta7
4.7.beta8
5.*
5.3.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1999022.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "3.2.14"
            }
        ]
    }
]