CVE-2019-5722

CRITICAL

portier 4.4.4.2-4.4.4.6 - SQL Injection via Login and Key Ring Search Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-5722. PoCs published by SySS GmbH.

AI-analyzed exploit summary This is a detailed security advisory describing an SQL injection vulnerability in PORTIER vision software, specifically in the search form for key ring numbers. The advisory includes a proof-of-concept SQL injection payload to extract encrypted passwords of supervisor users.

Description

An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Due to a lack of user input validation in parameter handling, it has various SQL injections, including on the login form, and on the search form for a key ring number.

Exploits (1)

exploitdb WRITEUP
by SySS GmbH · textwebappswindows
https://www.exploit-db.com/exploits/46163

This is a detailed security advisory describing an SQL injection vulnerability in PORTIER vision software, specifically in the search form for key ring numbers. The advisory includes a proof-of-concept SQL injection payload to extract encrypted passwords of supervisor users.

Classification
Writeup 100%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: PORTIER vision 4.4.4.2, 4.4.4.6
No auth needed
Prerequisites: Network access to the PORTIER application · Ability to intercept or craft database queries
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/46163/
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/151117/PORTIER-4.4.4.2-4.4.4.6-SQL-Injection.html
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Jan/7

Scores

CVSS v3 9.8
EPSS 0.0390
EPSS Percentile 88.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (2)
portier/portier 4.4.4.2
portier/portier 4.4.4.6
Published Mar 21, 2019
Tracked Since Feb 18, 2026