Vulnerabilities ›

CVE-2022-50967

Medium

CWE-79 — Weakness Type

                    Published: May 10, 2026                      ·  Modified: May 13, 2026                      ·  Source: NVD                

CVSS v3

6.1

🔗 NVD Official

📄 Description (English)

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the tickets/manage module. The date_created, date_from, date_to, and created_at parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET requests that execute in victims' browsers.

🤖 AI Executive Summary

CVE-2022-50967 is a reflected XSS vulnerability in uBidAuction 2.0.1 affecting the tickets/manage module through unsanitized date filter parameters. While no public exploit exists and CVSS is moderate (6.1), the lack of available patches and widespread use of auction platforms in Saudi e-commerce creates persistent risk. Attackers can inject malicious scripts to steal session tokens, credentials, or perform unauthorized actions on behalf of authenticated users.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 23, 2026 09:19

🇸🇦 Saudi Arabia Impact Assessment

Saudi e-commerce and auction platforms using uBidAuction 2.0.1 face significant risk, particularly in the retail and online marketplace sectors. Government procurement platforms and ARAMCO vendor management systems using this software could be compromised. Banking sector exposure is moderate if integrated with payment processing. Telecom companies (STC, Mobily) using auction systems for spectrum or equipment procurement are at risk. The vulnerability enables credential theft, session hijacking, and unauthorized transaction manipulation affecting both platform operators and end-users.

🏢 Affected Saudi Sectors

E-commerce and Online Retail Government Procurement Banking and Financial Services Telecommunications Energy and Utilities Vendor Management Systems

🎯 MITRE ATT&CK Techniques

T1598.003 - Phishing: Spearphishing Link (XSS delivery vector) T1566.002 - Phishing: Phishing - Spearphishing Link (malicious link injection) T1059.007 - Command and Scripting Interpreter: JavaScript/JScript T1185 - Man in the Browser (session hijacking via XSS) T1539 - Steal Web Session Cookie (via XSS payload) T1056.004 - Keylogging (credential capture via injected scripts)

⚖️ Saudi Risk Score (AI)

6.8

/ 10.0

🔧 Remediation Steps (English)

Immediate Actions:

1. Identify all instances of uBidAuction 2.0.1 in production environments across your organization

2. Restrict access to the tickets/manage module to trusted networks only via WAF rules

3. Implement input validation rules blocking special characters in date_created, date_from, date_to, and created_at parameters

Compensating Controls:

1. Deploy Web Application Firewall (WAF) rules to detect and block XSS payloads in GET parameters

2. Implement Content Security Policy (CSP) headers: Content-Security-Policy: default-src 'self'; script-src 'self'

3. Enable HTTP-only and Secure flags on session cookies to prevent JavaScript access

4. Apply output encoding/escaping for all date parameters using HTML entity encoding

5. Implement strict input validation: only allow date formats (YYYY-MM-DD) and reject any HTML/script content

Detection Rules:

1. Monitor for GET requests to /tickets/manage containing script tags, event handlers (onclick, onerror), or encoded payloads

2. Alert on unusual characters in date parameters: <, >, ", ', %, &, javascript:, onerror=, onload=

3. Log and review all requests with parameter values exceeding expected date format length

4. Implement SIEM rules to detect multiple XSS attempts from same source IP

Long-term:

1. Contact uBidAuction vendor for security patch or upgrade timeline

2. Evaluate alternative auction platform solutions with active security maintenance

3. Plan migration away from uBidAuction 2.0.1 if vendor does not provide timely patches

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. تحديد جميع حالات uBidAuction 2.0.1 في بيئات الإنتاج عبر مؤسستك

2. تقييد الوصول إلى وحدة إدارة التذاكر على الشبكات الموثوقة فقط عبر قواعد WAF

3. تنفيذ قواعد التحقق من الإدخال لحظر الأحرف الخاصة في معاملات date_created و date_from و date_to و created_at

الضوابط التعويضية:

1. نشر قواعد جدار حماية تطبيقات الويب (WAF) للكشف عن حمولات XSS وحظرها في معاملات GET

2. تنفيذ رؤوس سياسة أمان المحتوى (CSP): Content-Security-Policy: default-src 'self'; script-src 'self'

3. تفعيل أعلام HTTP-only و Secure على ملفات تعريف الجلسة لمنع وصول JavaScript

4. تطبيق ترميز/هروب الإخراج لجميع معاملات التاريخ باستخدام ترميز كيان HTML

5. تنفيذ التحقق الصارم من الإدخال: السماح فقط بتنسيقات التاريخ (YYYY-MM-DD) ورفض أي محتوى HTML/نصوص برمجية

قواعد الكشف:

1. مراقبة طلبات GET إلى /tickets/manage التي تحتوي على علامات نصية برمجية أو معالجات أحداث أو حمولات مشفرة

2. التنبيه على الأحرف غير العادية في معاملات التاريخ: <, >, ", ', %, &, javascript:, onerror=, onload=

3. تسجيل ومراجعة جميع الطلبات التي تتجاوز قيم المعاملات طول تنسيق التاريخ المتوقع

4. تنفيذ قواعد SIEM للكشف عن محاولات XSS المتعددة من نفس عنوان IP

المدى الطويل:

1. الاتصال بمورد uBidAuction للحصول على تصحيح أمني أو جدول زمني للترقية

2. تقييم حلول منصات المزادات البديلة مع صيانة أمان نشطة

3. التخطيط للهجرة بعيداً عن uBidAuction 2.0.1 إذا لم يوفر المورد تصحيحات في الوقت المناسب

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

ECC 2024 A.14.2.1 - Secure development policy and procedures ECC 2024 A.14.2.5 - Security testing in development and acceptance ECC 2024 A.14.3.1 - Information security requirements for external parties ECC 2024 A.5.23 - Web application security controls

🔵 SAMA CSF

SAMA CSF 2.1 - Governance and Risk Management SAMA CSF 3.2 - Technical Security Controls SAMA CSF 3.2.1 - Application Security SAMA CSF 4.1 - Detection and Response

🟡 ISO 27001:2022

ISO 27001:2022 A.8.1 - Organizational controls for information security ISO 27001:2022 A.8.2.3 - Segregation of duties ISO 27001:2022 A.14.2.1 - Secure development policy ISO 27001:2022 A.14.2.5 - Secure development environment ISO 27001:2022 A.14.3.1 - Separation of development, test and production environments

🟣 PCI DSS v4.0.1

PCI DSS 6.5.7 - Cross-site scripting (XSS) prevention PCI DSS 6.5.1 - Injection flaws prevention PCI DSS 6.2 - Security patches and updates

🔗 References & Sources 4

🔗

https://www.apphp.com/codemarket/items/48/ubidauction-php-classic-and-bid-auctions-script

disclosure@vulncheck.com

🔗

https://www.exploit-db.com/exploits/50693

disclosure@vulncheck.com

🔗

https://www.vulncheck.com/advisories/ubidauction-tickets-manage-reflected-xss

disclosure@vulncheck.com

🔗

https://www.vulnerability-lab.com/get_content.php?id=2289

disclosure@vulncheck.com

📊 CVSS Score

6.1

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionR — Required

ScopeC — Changed

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityN — None / Network

📋 Quick Facts

Severity Medium

CVSS Score6.1

CWECWE-79

EPSS0.04%

Exploit No

Patch ✗ No

Published 2026-05-10

Source Feed nvd

🇸🇦 Saudi Risk Score

6.8

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-79

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2022-50967

Introduce Yourself

Sign In Required