Unrated severityNVD Advisory· Published Dec 25, 2022· Updated Aug 4, 2024

barronwaffles dwc_network_server_emulator gs_database.py update_profile sql injection

CVE-2020-36631

Description

A vulnerability was found in barronwaffles dwc_network_server_emulator. It has been declared as critical. This vulnerability affects the function update_profile of the file gamespy/gs_database.py. The manipulation of the argument firstname/lastname leads to sql injection. The attack can be initiated remotely. The name of the patch is f70eb21394f75019886fbc2fb536de36161ba422. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216772.

Affected products

Barronwaffles/Dwc Network Server Emulatorv5
Range: n/a

Patches

f70eb21394f7

Merge pull request #538 from InvoxiPlayGames/master

https://github.com/barronwaffles/dwc_network_server_emulatorbarronwafflesJul 11, 2020via osv

commit PR #538

1 file changed · +5 −5

gamespy/gs_database.py+5 −5 modified

@@ -367,12 +367,12 @@ def update_profile(self, profileid, field):
 
         Start replacing each field one by one.
         TODO: Optimize this so it's done all in one update.
-        FIXME: Possible security issue due to embedding an unsanitized
-        string directly into the statement.
+        TODO: Check if other values than firstname/lastname are set using this
         """
-        with Transaction(self.conn) as tx:
-            q = "UPDATE users SET \"%s\" = ? WHERE profileid = ?"
-            tx.nonquery(q % field[0], (field[1], profileid))
+        if field[0] in ["firstname", "lastname"]:
+            with Transaction(self.conn) as tx:
+                q = "UPDATE users SET \"%s\" = ? WHERE profileid = ?"
+                tx.nonquery(q % field[0], (field[1], profileid))
 
     # Session functions
     # TODO: Cache session keys so we don't have to query the database every

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/barronwaffles/dwc_network_server_emulator/commit/f70eb21394f75019886fbc2fb536de36161ba422mitrepatch
github.com/barronwaffles/dwc_network_server_emulator/pull/538mitreissue-tracking
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000