GHSA-53v3-ffpm-f9hw
FrontAccounting versions before 2.4.20 contain a SQL injection vulnerability in the Bank Statement report handler. Authenticated attackers can exploit this by injecting UNION SELECT payloads into the PARAM_0 POST parameter. This allows extraction of arbitrary database data, including sensitive user information such as usernames, password hashes, and email addresses, which are rendered in the PDF report output.
AI Analysis
Technical Summary
A SQL injection vulnerability exists in FrontAccounting prior to version 2.4.20 within the Bank Statement report handler. The vulnerability arises because the PARAM_0 POST parameter is used in an unparameterized WHERE clause, enabling authenticated attackers to inject malicious SQL UNION SELECT statements. This injection can be used to retrieve sensitive data from the database, including user credentials and emails, which are then included in the generated PDF reports.
Potential Impact
Successful exploitation allows an authenticated attacker to extract sensitive database information, including usernames, password hashes, and email addresses from the users table. This exposure can lead to credential compromise and further system intrusion. The vulnerability affects confidentiality and potentially integrity of the data processed by the application.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict access to the Bank Statement report handler to trusted users only and monitor for suspicious activity related to report generation.
GHSA-53v3-ffpm-f9hw
Description
FrontAccounting versions before 2.4.20 contain a SQL injection vulnerability in the Bank Statement report handler. Authenticated attackers can exploit this by injecting UNION SELECT payloads into the PARAM_0 POST parameter. This allows extraction of arbitrary database data, including sensitive user information such as usernames, password hashes, and email addresses, which are rendered in the PDF report output.
CVSS v4.0
Affected software
pkg:github/frontaccountingerp/FARun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
A SQL injection vulnerability exists in FrontAccounting prior to version 2.4.20 within the Bank Statement report handler. The vulnerability arises because the PARAM_0 POST parameter is used in an unparameterized WHERE clause, enabling authenticated attackers to inject malicious SQL UNION SELECT statements. This injection can be used to retrieve sensitive data from the database, including user credentials and emails, which are then included in the generated PDF reports.
Potential Impact
Successful exploitation allows an authenticated attacker to extract sensitive database information, including usernames, password hashes, and email addresses from the users table. This exposure can lead to credential compromise and further system intrusion. The vulnerability affects confidentiality and potentially integrity of the data processed by the application.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict access to the Bank Statement report handler to trusted users only and monitor for suspicious activity related to report generation.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-53v3-ffpm-f9hw
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-40522"]
- Ecosystems
- []
- Database Specific Severity
- HIGH
- Cvss Version
- 4.0
Threat ID: 6a42ed5027e9c797199361d7
Added to database: 06/29/2026, 22:10:24 UTC
Last enriched: 06/29/2026, 22:29:16 UTC
Last updated: 06/30/2026, 00:51:52 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.