CVE-2020-12461

Name of the Vulnerable Software and Affected Versions PHP-Fusion version 9.03.50

Description The issue is related to insufficient protection mechanisms in the maincore.php file, allowing for SQL injection attacks. An attacker can craft a payload to insert into the sort order GET parameter on the members.php members search page, gaining control over the SQL query after the ORDER BY clause. The vulnerability in components such as /submit.php and /infusions/downloads/downloads.php is due to a lack of protection against SQL query structure attacks, enabling a remote attacker to execute arbitrary SQL queries.

Recommendations For PHP-Fusion version 9.03.50, consider disabling the sort order parameter in the members.php page until a patch is available. Restrict access to the /submit.php and /infusions/downloads/downloads.php components to minimize the risk of exploitation. Avoid using the sort order parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.