CVE-2024-32231 Scanner

Stash is a media management software used by individuals and organizations to manage, organize, and tag their digital libraries. It is often utilized in settings where large quantities of media files need to be efficiently cataloged and retrieved. Users benefit from its web-based interface and advanced search capabilities. Stash is used by home users managing personal libraries as well as professional environments with extensive media assets. Its open-source nature allows community contributions and customizations. The software's flexibility makes it a preferred choice for media enthusiasts.

SQL Injection is a critical vulnerability that allows attackers to interfere with the queries an application makes to its database. It can be used to bypass security measures, extract data, modify or delete records, and possibly escalate an attack to other vulnerabilities. This particular vulnerability arises when user input is improperly sanitized, allowing malicious SQL commands to be executed. It is a common threat in web applications and requires attention to prevent data breaches. Proper handling of input and adequate validation are essential to mitigate such risks.

The SQL Injection vulnerability in Stash, as described, exploits the 'sort' parameter through a GraphQL query. By injecting custom SQL commands into this parameter, an attacker can manipulate database interactions. Specifically, the injected payload within the 'sort' parameter demonstrates the ability to execute union queries, potentially revealing database schema details. The vulnerability's technical underpinnings rely on inadequate sanitization of inputs combined with direct SQL command execution. When exploited, the flaw may lead to unauthorized data access or manipulation, compromising the integrity of data.

When exploited, the SQL Injection vulnerability can lead to severe consequences, such as unauthorized data exposure or modification. An attacker could gain the ability to read sensitive data, alter database records, or disrupt the application's normal operation. In worst-case scenarios, this type of vulnerability can facilitate further exploitation, leading to broader system compromise. The integrity, confidentiality, and availability of data can all be jeopardized, presenting significant risks to users and organizations relying on Stash.

REFERENCES

• https://github.com/stashapp
• https://github.com/stashapp/stash
• https://github.com/stashapp/stash/pull/4865
• https://github.com/advisories/GHSA-75jf-52jg-qqh4
• https://nvd.nist.gov/vuln/detail/CVE-2024-32231