OpenKM Community Edition
On or Before 6.3.12
/OpenKM/admin/DatabaseQuery
A Cross-Site Request Forgery (CSRF) vulnerability was discovered in OpenKM Community Edition on or before version 6.3.12. The vulnerability exists in the /admin/DatabaseQuery endpoint, which allows an attacker to manipulate a victim with administrative privileges to execute arbitrary SQL commands.
An attacker can craft a malicious CSRF payload that, when executed by an administrator, can execute arbitrary SQL commands on the vulnerable system. This can lead to unauthorized data modification, extraction, or destruction.
- Unauthorized data modification
- Unauthorized data extraction
- Unauthorized data destruction
- Elevation of privileges
- OpenKM Community Edition:
- https://www.openkm.com/
- https://github.com/openkm/document-management-system
- https://www.cve.org/CVERecord?id=CVE-2024-35475
- CWE: CWE-352 (Cross-Site Request Forgery)