JVNDB-2017-000243

Movable Type plugin A-Member and A-Reserve vulnerable to SQL injection

A-Member and A-Reserve provided by ARK-Web co., ltd. are plugins for Movable Type which provide functions to build a membership website or a reservation website. A-Member and A-Reserve contain SQL injection (CWE-89) vulnerability due to the issue in processing cookie values.

Yuuta Watanabe of STNet, Incorporated reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

ARK-Web co., ltd

• A-Member 3.8.6 and earlier (CVE-2017-10898)
• A-Member for MT cloud 3.8.6 and earlier (CVE-2017-10898)
• A-Reserve 3.8.6 and earlier (CVE-2017-10899)
• A-Reserve for MT cloud 3.8.6 and earlier (CVE-2017-10899)

An attacker who can access the web page created by using either A-Member or A-Reserve may obtain or alter information stored in the database.

[Update the Software]
Apply the latest version for the appropriate plugin according to the information provided by the developer.

ARK-Web co., ltd

• Movable Type : ARK-Web co., ltd. website (in Japanese)

1. SQL Injection(CWE-89) [IPA Evaluation]

1. CVE-2017-10898
2. CVE-2017-10899

1. JVN : JVN#78501037
2. National Vulnerability Database (NVD) : CVE-2017-10898
3. National Vulnerability Database (NVD) : CVE-2017-10899
4. IPA SECURITY ALERTS : Security Alert for Vulnerability in Movable Type plugin A-Member and A-Reserve (JVN#78501037) (in Japanese)

• [2017/11/30]
    Web page was published
• [2018/03/14]
    References : Contents were added