CVE-2012-2115

OpenEMR < 4.1.0 - SQL Injection via User Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-2115. PoCs published by Level.

AI-analyzed exploit summary The exploit demonstrates an arbitrary file upload vulnerability in OpenEMR 4, allowing an attacker to upload a malicious shell via the Patient Photograph feature. It also includes examples of XSS and SQL injection vulnerabilities in the same software.

Description

SQL injection vulnerability in interface/login/validateUser.php in OpenEMR 4.1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the u parameter.

Exploits (1)

exploitdb WORKING POC

by Level · textwebappsphp

https://www.exploit-db.com/exploits/18274

View Code ZIP pw:eip

The exploit demonstrates an arbitrary file upload vulnerability in OpenEMR 4, allowing an attacker to upload a malicious shell via the Patient Photograph feature. It also includes examples of XSS and SQL injection vulnerabilities in the same software.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: OpenEMR 4

Auth required

Prerequisites: Valid user credentials · Access to the Patient Photograph upload feature

MITRE ATT&CK