CVE-2013-5967

Alienvault Open Source Security Information Management - SQL Injection

Title source: rule

Description

Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.3 and earlier allow remote attackers to execute arbitrary SQL commands via the date_from parameter to (1) radar-iso27001-potential.php, (2) radar-iso27001-A12IS_acquisition-pot.php, (3) radar-iso27001-A11AccessControl-pot.php, (4) radar-iso27001-A10Com_OP_Mgnt-pot.php, or (5) radar-pci-potential.php in RadarReport/.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Yu-Chi Ding · textwebappsphp

https://www.exploit-db.com/exploits/38781

View Code ZIP pw:eip

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/alienvault_iso27001_sqli.rb

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/62790

[Third Party Advisory, VDB Entry] http://osvdb.org/98052

[Third Party Advisory, VDB Entry] http://osvdb.org/ref/97/ossim-sql.txt

Scores

EPSS 0.3525

EPSS Percentile 97.1%

Details

CWE

CWE-89

Status published

Products (21)

alienvault/open_source_security_information_management 1.0.4

alienvault/open_source_security_information_management 1.0.6

alienvault/open_source_security_information_management 2.1

alienvault/open_source_security_information_management 2.1.2

alienvault/open_source_security_information_management 2.1.5

alienvault/open_source_security_information_management 2.1.5-1

alienvault/open_source_security_information_management 2.1.5-2

alienvault/open_source_security_information_management 2.1.5-3

alienvault/open_source_security_information_management 3.1

alienvault/open_source_security_information_management 3.1.9

... and 11 more

Published Oct 09, 2013

Tracked Since Feb 18, 2026