CRITICAL🇵🇱 Wersja polska

CVE-2024-30163

CVSS 9.8v3.1pub. 2024-06-07upd. 2025-03-19

Invision Community before 4.7.16 allow SQL injection via the applications/nexus/modules/front/store/store.php IPS\nexus\modules\front\store\_store::_categoryView() method, where user input passed through the filter request parameter is not properly sanitized before being used to execute SQL queries. This can be exploited by unauthenticated attackers to carry out Blind SQL Injection attacks.

🤖 AI Analysis
How it works

The vulnerability is located in the file applications/nexus/modules/front/store/store.php, specifically in the _categoryView() method of the IPS\nexus\modules\front\store\_store class. User data passed via the 'filter' request parameter is not properly sanitized before being used to construct SQL queries. An unauthenticated attacker can send crafted parameter values, thereby executing Blind SQL Injection attacks — gradually reading database contents by analyzing application responses.

Impact

An unauthenticated attacker can gain unauthorized access to data stored in the database (including user data, passwords, transaction information), and potentially also modify or delete data, threatening the confidentiality, integrity, and availability of the system.

Mitigation & patch

Invision Community should be updated to version 4.7.16 or newer. Release information is available in the official vendor release notes at: https://invisioncommunity.com/release-notes/4716-r128/

Who is affected

Invision Community (IPS) in all versions before 4.7.16 with the active Nexus store module.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Invisioncommunity

    APP
    Invisioncommunity
    4.4.0 – 4.7.16 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLiAuth Bypass
CWE
References

Related vulnerabilities

CVE-2025-47916CRITICAL10.0PL ✓ten sam produkt

RCE w Invision Community 5 — wstrzyknięcie kodu przez themeeditor.php

CVE-2021-40604CRITICAL9.1ten sam vendor

A Server-Side Request Forgery (SSRF) vulnerability in IPS Community Suite before 4.6.2 allows remote authentic...

CVE-2013-3725CRITICAL9.8ten sam vendor

Invision Power Board (IPB) through 3.x allows admin account takeover leading to code execution.

CVE-2012-2226CRITICAL9.8ten sam vendor

Invision Power Board before 3.3.1 fails to sanitize user-supplied input which could allow remote attackers to ...

CVE-2017-8898CRITICAL9.8ten sam vendor

Invision Power Services (IPS) Community Suite 4.1.19.2 and earlier has stored XSS in the Announcements, allowi...