PT-2019-12774 · Ampache+1 · Ampache+1

Pablo Martinez

Published

2019-08-22

Updated

2021-01-14

CVE-2019-12385

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Ampache versions through 3.9.1

Description An issue in the search engine allows for SQL Injection, enabling any user, including guest users, to extract data from the database, such as sessions and hashed passwords. This could lead to the compromise of admin accounts, especially when combined with the weak password generator algorithm in the lostpassword functionality.

Recommendations For Ampache versions through 3.9.1, consider restricting access to the search functionality, specifically the lib/class/search.class.php file, until a fix is available. As a temporary workaround, limit the use of the lostpassword functionality to prevent exploitation of the weak password generator algorithm.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2019-12385

DLA-1988-1

USN-4693-1

Affected Products

Ampache

Ubuntu

PT-2019-12774 · Ampache+1 · Ampache+1

CVE-2019-12385

Weakness Enumeration

Related Identifiers

Affected Products

References · 11