CVE-2024-40614

Name of the Vulnerable Software and Affected Versions EGroupware versions prior to 23.1.20240624

Description The issue arises from the mishandling of an ORDER BY clause, leading to SQL injection by authenticated users when sorting Address Book or InfoLog. This specifically affects the "json.php?menuaction=EGroupwareApiEtemplateWidgetNextmatch::ajax get rows" endpoint, where the sort.id parameter is vulnerable.

Recommendations For versions prior to 23.1.20240624, update to version 23.1.20240624 or later to resolve the issue. As a temporary workaround, consider restricting access to the "json.php?menuaction=EGroupwareApiEtemplateWidgetNextmatch::ajax get rows" endpoint to minimize the risk of exploitation. Additionally, avoid using the sort.id parameter in the affected endpoint until the issue is resolved.