CVE-2019-20059

HIGH

YetiShare 3.5.2-4.5.4 - SQL Injection via sSortDir_0 Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-20059. PoCs published by cve-vuln.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2019-20059, a SQL injection vulnerability in Yetishare versions 3.5.2 to 4.5.4. It includes specific examples of exploitation using sqlmap, demonstrating the vulnerability in the sSortDir_0 parameter.

Description

payment_manage.ajax.php and various *_manage.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.4 directly insert values from the sSortDir_0 parameter into a SQL string. This allows an attacker to inject their own SQL and manipulate the query, typically extracting data from the database, aka SQL Injection. NOTE: this issue exists because of an incomplete fix for CVE-2019-19732.

Exploits (1)

nomisec WRITEUP
by cve-vuln · poc
https://github.com/cve-vuln/CVE-2019-20059

This repository provides a detailed technical analysis of CVE-2019-20059, a SQL injection vulnerability in Yetishare versions 3.5.2 to 4.5.4. It includes specific examples of exploitation using sqlmap, demonstrating the vulnerability in the sSortDir_0 parameter.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Yetishare v3.5.2 - v4.5.4
Auth required
Prerequisites: Access to an admin session or ability to trick an admin into executing a CSRF attack
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Product x_refsource_misc
https://yetishare.com/
Product x_refsource_misc
https://mfscripts.com/
Exploit, Third Party Advisory x_refsource_misc
https://github.com/jra89/CVE-2019-20059

Scores

CVSS v3 8.8
EPSS 0.0146
EPSS Percentile 81.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352 CWE-89
Status published
Products (1)
mfscripts/yetishare 3.5.2 - 4.5.4
Published Feb 10, 2020
Tracked Since Feb 18, 2026