CVE-2020-37008
HIGHEasyPMS 1.0.0 - Unauthenticated Authorization Bypass via SQL Query Manipulation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-37008. PoCs published by Jok3r.
AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in EasyPMS 1.0.0 via SQL injection in a JSON request, allowing a low-privilege user to escalate to HotelOwner admin by manipulating the 'ID' column and resetting the admin password.
Description
EasyPMS 1.0.0 contains an authentication bypass vulnerability that allows unprivileged users to manipulate SQL queries in JSON requests to access admin user information. Attackers can exploit weak input validation by injecting single quotes in ID parameters and modify admin user passwords without proper token authentication.
Exploits (1)
This exploit demonstrates an authentication bypass vulnerability in EasyPMS 1.0.0 via SQL injection in a JSON request, allowing a low-privilege user to escalate to HotelOwner admin by manipulating the 'ID' column and resetting the admin password.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N