CVE-2022-26959

There are two full (read/write) Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp page in the /northstar/iphone/ directory. Exploitation of the SQL injection vulnerabilities allows full access to the database which contains critical data for organization’s that make full use of the software suite.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://assura.atlassian.net/wiki/spaces/VULNS/pages/1842675717/CVE-2022-26959+Northstar+Club+Management+software+version+6.3+-+Full+Blind+Time-based+SQL+Injection	Exploit Issue Tracking Third Party Advisory
https://www.assurainc.com/services/advisory-services/threat-vuln-assessment/	Broken Link

Configurations

Configuration 1 (hide)

cpe:2.3:a:globalnorthstar:northstar_club_management:6.3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-09-16 02:15

Updated : 2024-02-28 19:29

NVD link : CVE-2022-26959

Mitre link : CVE-2022-26959

CVE.ORG link : CVE-2022-26959

JSON object : View

Products Affected

globalnorthstar

northstar_club_management

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2022-26959", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 10.0, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 3.9}]}, "published": "2022-09-16T02:15:08.987", "references": [{"url": "https://assura.atlassian.net/wiki/spaces/VULNS/pages/1842675717/CVE-2022-26959+Northstar+Club+Management+software+version+6.3+-+Full+Blind+Time-based+SQL+Injection", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.assurainc.com/services/advisory-services/threat-vuln-assessment/", "tags": ["Broken Link"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "There are two full (read/write) Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application. The vulnerabilities exist in the userName parameter of the processlogin.jsp page in the /northstar/Portal/ directory and the userID parameter of the login.jsp page in the /northstar/iphone/ directory. Exploitation of the SQL injection vulnerabilities allows full access to the database which contains critical data for organization\u2019s that make full use of the software suite."}, {"lang": "es", "value": "Se presentan dos vulnerabilidades de inyecci\u00f3n SQL completas (lectura/escritura) basadas en el tiempo en la aplicaci\u00f3n Northstar Club Management versi\u00f3n 6.3. Las vulnerabilidades se presentan en el par\u00e1metro userName de la p\u00e1gina processlogin.jsp en el directorio /northstar/Portal/ y en el par\u00e1metro userID de la p\u00e1gina login.jsp en el directorio /northstar/iphone/. La explotaci\u00f3n de las vulnerabilidades de inyecci\u00f3n SQL permite el acceso completo a la base de datos que contiene datos cr\u00edticos para las organizaciones que hacen uso completo de la suite de software"}], "lastModified": "2022-09-19T18:25:17.677", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:globalnorthstar:northstar_club_management:6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "269E5527-3ED0-4BE8-B661-77B0058EFBD7"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}