CVE-2022-0944

Template injection in connection test endpoint leads to RCE in sqlpad/sqlpad

CVSS 9.1 CRITICALEPSS 8.7%CWE-1336

Template injection in connection test endpoint leads to RCE in GitHub repository sqlpad/sqlpad prior to 6.10.1.

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected products

sqlpad · sqlpad/sqlpad

public PoCs found — 10

githubgithub.com/0xRoqeeb/sqlpad-rce-exploit-CVE-2022-0944★ 9 githubgithub.com/shhrew/CVE-2022-0944★ 7 githubgithub.com/FlojBoj/CVE-2022-0944★ 5 githubgithub.com/Robocopsita/CVE-2022-0944_RCE_POC★ 2 githubgithub.com/Artemisxxx37/OverlayFS-PrivEsc-CVE-2022-0944★ 1 githubgithub.com/toneillcodes/CVE-2022-0944★ 1 githubgithub.com/LipeOzyy/SQLPad-RCE-Exploit-CVE-2022-0944★ 1 githubgithub.com/Philip-Otter/CVE-2022-0944_RCE_Automation★ 0 githubgithub.com/0xDTC/SQLPad-6.10.0-Exploit-CVE-2022-0944★ 0 githubgithub.com/NeoArtemis37/OverlayFS-PrivEsc-CVE-2022-0944★ 0

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/sqlpad/sqlpad/commit/3f92be386c6cd3e5eba75d85f0700d3ef54daf73 https://huntr.dev/bounties/46630727-d923-4444-a421-537ecd63e7fb