CVE-2023-35708

CRITICAL EXPLOITED RANSOMWARE NUCLEI

Progress MOVEit Transfer < 2020.1.10 - Unauthenticated SQL Injection

Title source: llm

Exploitation Summary

CVE-2023-35708 has been observed exploited in the wild (reported by VulnCheck KEV), including in ransomware campaigns. EIP tracks 1 public exploit from researchers including horrister. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository provides a technical writeup for CVE-2023-34362, a critical SQL injection vulnerability in MOVEit Transfer. It includes root cause analysis, attack timeline, and IOCs but lacks functional exploit code.

Description

In Progress MOVEit Transfer before 2021.0.8 (13.0.8), 2021.1.6 (13.1.6), 2022.0.6 (14.0.6), 2022.1.7 (14.1.7), and 2023.0.3 (15.0.3), a SQL injection vulnerability has been identified in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer's database. An attacker could submit a crafted payload to a MOVEit Transfer application endpoint that could result in modification and disclosure of MOVEit database content. These are fixed versions of the DLL drop-in: 2020.1.10 (12.1.10), 2021.0.8 (13.0.8), 2021.1.6 (13.1.6), 2022.0.6 (14.0.6), 2022.1.7 (14.1.7), and 2023.0.3 (15.0.3).

Exploits (1)

nomisec WRITEUP

by horrister · poc

https://github.com/horrister/moveit-transfer-cve-2023-35708

View Code ZIP pw:eip

This repository provides a technical writeup for CVE-2023-34362, a critical SQL injection vulnerability in MOVEit Transfer. It includes root cause analysis, attack timeline, and IOCs but lacks functional exploit code.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Moderate

Reliability

Theoretical

Target: MOVEit Transfer

No auth needed

Prerequisites: Access to MOVEit Transfer instance

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Jun 07, 2026 Full analysis →

Nuclei Templates (1)

MOVEit Transfer - SQL Injection

CRITICALVERIFIEDby daffainfo,jjcho

Shodan: http.favicon.hash:989289239

FOFA: icon_hash=989289239

References (3)

Core 3

Core References

Mitigation, Patch, Vendor Advisory

https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-15June2023

Third Party Advisory, US Government Resource

https://www.cisa.gov/news-events/alerts/2023/06/15/progress-software-releases-security-advisory-moveit-transfer-vulnerability

Vendor Advisory

https://www.progress.com/security/moveit-transfer-and-moveit-cloud-vulnerability

Scores

CVSS v3 9.8

EPSS 0.9218

EPSS Percentile 99.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

VulnCheck KEV 2023-08-30

Ransomware Use Confirmed

CWE

CWE-89

Status published

Products (1)

progress/moveit_transfer < 2020.1.10

Published Jun 16, 2023

Tracked Since Feb 18, 2026