mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 19:16:22 +00:00
905 B
905 B
CVE-2020-29437
Description
SQL injection in the Buzz module of OrangeHRM through 4.6 allows remote authenticated attackers to execute arbitrary SQL commands via the orangehrmBuzzPlugin/lib/dao/BuzzDao.php loadMorePostsForm[profileUserId] parameter to the buzz/loadMoreProfile endpoint.
POC
Reference
- https://github.com/orangehrm/orangehrm/issues/695
- https://github.com/orangehrm/orangehrm/issues/695
- https://www.horizon3.ai/disclosures/orangehrm-sqli.html
- https://www.horizon3.ai/disclosures/orangehrm-sqli.html