CVE-2019-10123

CRITICAL

AIS logistic_software < 67 - Unauthenticated SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-10123. PoCs published by Metasploit, Manuel Feifel, including Metasploit module exploits/windows/misc/ais_esel_server_rce.

AI-analyzed exploit summary This Metasploit module exploits an unauthenticated SQL injection vulnerability in AIS logistics ESEL-Server to achieve remote code execution via `xp_cmdshell`. It leverages a flawed login process to inject arbitrary SQL commands, typically targeting MSSQL servers with the 'sa' user.

Description

SQL Injection in Advanced InfoData Systems (AIS) ESEL-Server 67 (which is the backend for the AIS logistics mobile app) allows an anonymous attacker to execute arbitrary code in the context of the user of the MSSQL database. The default user for the database is the 'sa' user.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/46782

View Code ZIP pw:eip

This Metasploit module exploits an unauthenticated SQL injection vulnerability in AIS logistics ESEL-Server to achieve remote code execution via `xp_cmdshell`. It leverages a flawed login process to inject arbitrary SQL commands, typically targeting MSSQL servers with the 'sa' user.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: AIS logistics ESEL-Server (version 67 and likely lower)

No auth needed

Prerequisites: Target server with ESEL-Server listening on port 5099 (or 5100 with TLS) · MSSQL Server with `xp_cmdshell` enabled or privilege to enable it · Network connectivity to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505 - Server Software Component T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

by Manuel Feifel · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/ais_esel_server_rce.rb

View Code ZIP pw:eip

This Metasploit module exploits an unauthenticated SQL injection vulnerability in AIS logistics ESEL-Server, allowing remote code execution via `xp_cmdshell`. The exploit crafts a malicious login message to inject SQL commands, enabling payload execution on the target system.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: AIS logistics ESEL-Server (version 67 and likely lower)

No auth needed

Prerequisites: Target system running AIS logistics ESEL-Server with exposed port 5099 · MSSQL Server with `sa` user privileges

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505 - Server Software Component T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://www.ais.de

Exploit, Third Party Advisory x_refsource_misc

https://github.com/rapid7/metasploit-framework/pull/11641/

Scores

CVSS v3 9.8

EPSS 0.7980

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-89

Status published

Products (1)

ais/logistic_software < 67

Published May 31, 2019

Tracked Since Feb 18, 2026