CVE-2020-35674

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-35674

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35674.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-35674

Published

2022-09-29T03:15:14.130Z

Modified

2026-03-14T10:28:57.309666Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

BigProf Online Invoicing System before 2.9 suffers from an unauthenticated SQL Injection found in /membership_passwordReset.php (the endpoint that is responsible for issuing self-service password resets). An unauthenticated attacker is able to send a request containing a crafted payload that can result in sensitive information being extracted from the database, eventually leading into an application takeover. This vulnerability was introduced as a result of the developer trying to roll their own sanitization implementation in order to allow the application to be used in legacy environments.

References

https://labs.ingredous.com/2020/07/13/ois-sqli/

Affected packages

Git / github.com/bigprof-software/online-invoicing-system

Affected ranges

Type

GIT

Repo

https://github.com/bigprof-software/online-invoicing-system

Events

Introduced

Fixed

1d715607a52fa77ba62e18fae071538f61f62c75

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.9"
        }
    ]
}

Affected versions

2.*

2.3

2.4

2.5

2.6

2.7

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35674.json"