QID 150470

Date Published: 2022-02-15

QID 150470: Casdoor SQL Injection Vulnerability (CVE-2022-24124)

Casdoor is a UI-first centralized authentication/Single-Sign-On (SSO) platform supporting OAuth 2.0, OIDC and SAML, integrated with Casbin RBAC and ABAC permission management.

The installed version of Casdoor allows unauthenticated remote attackers to perform SQL Injection attacks. The vulnerability exists due to insufficient validation of user-supplied input passed via "value" or "field" parameters to /api/get-organizations endpoint.

Affected versions:
Casdoor versions prior to 1.13.1

QID Detection Logic:
This QID sends a HTTP GET request to "/api/get-organizations" with SQL Injection payload and based on the response confirms if the target is vulnerable.

Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL queries on the target system.

  • CVSS V3 rated as High - 7.5 severity.
  • CVSS V2 rated as Medium - 5 severity.
    • Solution
    Customers are advised to upgrade to the Casdoor 1.13.1 or later version to remediate this vulnerability. For more information refer Security Advisory
    Vendor References

    CVEs related to QID 150470

    CVE-2022-24124 |
    Software Advisories
    Advisory ID Software Component Link
    Security Advisory(GHSA-m358-g4rp-533r) URL Logo github.com/advisories/GHSA-m358-g4rp-533r
    By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].