Webiness Inventory SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Webiness Inventory version 2.3. This vulnerability allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious payloads through the 'order' parameter. The exploitation occurs via POST requests to the 'WsModelGrid.php' endpoint, enabling attackers to extract sensitive database information such as usernames, database names, and version details.

Impact

Exploitation of this vulnerability allows for arbitrary SQL execution, which could lead to unauthorized data access or manipulation. In this case, it could be used to extract sensitive information from the database, including usernames and version details.

Reproduction

To reproduce this vulnerability, send a POST request to the 'WsModelGrid.php' endpoint with a crafted SQL payload in the 'order' parameter. The injection can be verified by the resulting SQL error messages or by successfully extracting database information through the injection.