Craft CMS up to v3.7.31 was discovered to contain a SQL injection vulnerability via the GraphQL API endpoint.
An attacker sends a properly crafted GraphQL query to the public API endpoint, injecting malicious SQL code. Lack of proper validation and sanitization of input data allows execution of arbitrary SQL commands in the context of the application database. The attack does not require possession of an account or any permissions in the system.
An attacker can obtain unauthorized access to data stored in the database, modify or delete its contents, and under favorable configuration conditions - execute system commands on the server.
Craft CMS should be updated to a version higher than 3.7.31. Patches available from the vendor should be applied according to references. As a temporary workaround, consider restricting access to the GraphQL API endpoint at the firewall or network layer.
Craft CMS in versions up to and including 3.7.31.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCraftcms Craft Cms
APPCraftcms< 3.7.31
Related vulnerabilities
Krytyczny RCE w Craft CMS — zdalne wykonanie kodu bez uwierzytelnienia
RCE w Craft CMS przez nieprawidłową konfigurację register_argc_argv
Craft CMS: RCE przez SSTI w polach szablonów Twig
Craft CMS: obejście bloklisty PHP w silniku Twig umożliwia RCE
Craft CMS is a platform for creating digital experiences. This is a high-impact, low-complexity attack vector....