CVE-2020-37105
Published: 03 February 2026
Summary
CVE-2020-37105 is a high-severity SQL Injection (CWE-89) vulnerability in Sigb (inferred from references). Its CVSS base score is 7.1 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 14.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and AC-6 (Least Privilege).
Deeper analysis
CVE-2020-37105 is a SQL injection vulnerability affecting PMB version 5.6, specifically in the administration download script located at the /admin/sauvegarde/download.php endpoint. The flaw arises from insufficient validation of the 'logid' parameter, enabling attackers to inject and execute arbitrary SQL commands directly against the underlying database.
Authenticated attackers with low privileges (PR:L) can exploit this vulnerability remotely over the network (AV:N) with low complexity (AC:L) and no user interaction required (UI:N). By sending crafted HTTP requests with manipulated 'logid' values, they can achieve high confidentiality impact (C:H), such as extracting sensitive data from the database, alongside limited integrity impact (I:L) like minor data modification, but without affecting availability (A:N). The overall CVSS v3.1 base score is 7.1.
Advisories and related resources, including a proof-of-concept exploit on Exploit-DB (https://www.exploit-db.com/exploits/48356) and a detailed analysis from VulnCheck (https://www.vulncheck.com/advisories/pmb-logid-sql-injection), document the issue, alongside vendor sites at http://forge.sigb.net/redmine/projects/pmb/files and http://www.sigb.net. No specific patch details are outlined in the primary description, emphasizing the need to review these references for mitigation guidance.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2020-30987
Vulnerability details
PMB 5.6 contains a SQL injection vulnerability in the administration download script that allows authenticated attackers to execute arbitrary SQL commands through the 'logid' parameter. Attackers can leverage this vulnerability by sending crafted requests to the /admin/sauvegarde/download.php endpoint with manipulated…
more
logid values to interact with the database.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
SQL injection in a network-accessible web admin script directly enables remote exploitation of a public-facing application (T1190) and extraction of data from the underlying database (T1213.006).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires validation and sanitization of the 'logid' parameter before it reaches the SQL query in download.php, blocking the injection vector.
Limits the database privileges of the authenticated account so that even a successful logid injection cannot arbitrarily read or modify arbitrary tables.
Enables monitoring of SQL statements and anomalies at the /admin/sauvegarde/download.php endpoint or the database layer to identify crafted logid payloads.