9.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2014-125029

GHSA ID

GHSA-ww43-mcvh-35p4

EPSS Score

0.17783%

CWE

CWE-89

Published

1/8/2023

Updated

10/20/2023

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2014-125029

CVE-2014-125029: PaginationServiceProvider SQL Injection vulnerability

A vulnerability was found in ttskch PaginationServiceProvider up to 0.x. It has been declared as critical. This vulnerability affects unknown code of the file demo/index.php of the component demo. The manipulation of the argument sort/id leads to sql injection. Upgrading to version 1.0.0 can address this issue. The name of the patch is 619de478efce17ece1a3b913ab16e40651e1ea7b. It is recommended to upgrade the affected component. VDB-217150 is the identifier assigned to this vulnerability.

(GitHub Advisory)

9.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2014-125029

GHSA ID

GHSA-ww43-mcvh-35p4

EPSS Score

0.17783%

CWE

CWE-89

Published

1/8/2023

Updated

10/20/2023

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
ttskch/pagination-service-provider	composer	< 1.0.0	1.0.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability arises in the SQL query construction in demo/index.php. User-controlled input (sort/id parameter) is directly interpolated into the SQL string via $request->get('sort', 'id') and used in the ORDER BY clause. The fetchAll method then executes this raw, unsanitized query. The patch fixes this by using quoteIdentifier on $sort and validating $direction, confirming the lack of input sanitization in the original code. While the root cause is the unsafe interpolation, fetchAll is the function that ultimately executes the vulnerable SQL, making it the critical point of exploitation.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* vuln*r**ility w*s *oun* in ttsk** P**in*tionS*rvi**Provi**r up to *.x. It **s ***n ***l*r** *s *riti**l. T*is vuln*r**ility *****ts unknown *o** o* t** *il* `**mo/in**x.p*p` o* t** *ompon*nt **mo. T** m*nipul*tion o* t** *r*um*nt sort/i* l***s to s

Reasoning

T** vuln*r**ility *ris*s in t** SQL qu*ry *onstru*tion in `**mo/in**x.p*p`. Us*r-*ontroll** input (sort/i* p*r*m*t*r) is *ir**tly int*rpol*t** into t** SQL strin* vi* `$r*qu*st->**t('sort', 'i*')` *n* us** in t** OR**R *Y *l*us*. T** `**t***ll` m*t*o

9.8

Basic Information

Concerned about an active attack path?

CVE-2014-125029: PaginationServiceProvider SQL Injection vulnerability

9.8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI