CVE-2020-7356

Cayin xPost SQL Injection

CVSS 10 CRITICALEPSS 14.0%CWE-89

Vexday Risk Score

48Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS 10EPSS 14.0%KEV nãoPoC —Nuclei —Metasploit simPatch —

Lifecycle

04 Jun 2020Metasploit module available

06 Aug 2020Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

CAYIN xPost suffers from an unauthenticated SQL Injection vulnerability. Input passed via the GET parameter 'wayfinder_seqid' in wayfinder_meeting_input.jsp is not properly sanitized before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and execute SYSTEM commands.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Affected products

Cayin Technology · Cayin xPost

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/rapid7/metasploit-framework/pull/13607 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5571.php