Allele Security Alert
ASA-2019-00177
Identifier(s)
ASA-2019-00177, PRODSECBUG-2198
Title
SQL Injection vulnerability through an unauthenticated user
Vendor(s)
Magento
Product(s)
Magento
Affected version(s)
Magento Open Source prior to 1.9.4.1
Magento Commerce prior to 1.14.4.1
Magento 2.1 prior to 2.1.17
Magento 2.2 prior to 2.2.8
Magento 2.3 prior to 2.3.1
Fixed version(s)
Magento Open Source 1.9.4.1
Magento Commerce 1.14.4.1
SUPEE-11086
Magento 2.2.8
Magento 2.3.1
Proof of concept
Yes
Description
An unauthenticated user can execute arbitrary code through an SQL injection vulnerability, which causes sensitive data leakage. NOTE: This patch is not included in 2.1.17. Please apply PRODSECBUG-2198 patch in addition to upgrade to 2.1.17.
Technical details
Unknown
Credits
cfreal
Reference(s)
Magento 2.3.1, 2.2.8 and 2.1.17 Security Update
https://magento.com/security/patches/magento-2.3.1-2.2.8-and-2.1.17-security-update
MAGENTO 2.2.0 <= 2.3.0 UNAUTHENTICATED SQLI
https://www.ambionics.io/blog/magento-sqli
magento-sqli.py
https://github.com/ambionics/magento-exploits/blob/master/magento-sqli.py
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: April 16, 2019