Joomla! EkRishta Persistent Cross-Site Scripting and SQL Injection Vulnerability

A vulnerability in the Joomla! extension EkRishta version 2.10 allows for persistent cross-site scripting and SQL injection. Attackers can inject malicious scripts into profile fields, such as the Address, which are executed when the profile is viewed. Additionally, SQL injection payloads can be sent through the phone_no parameter to the user_setting endpoint, potentially manipulating database queries.

Impact

Exploitation of this vulnerability allows for persistent cross-site scripting, where injected scripts are executed when profile pages are visited, and SQL injection, which can be used to manipulate database queries and potentially access or modify sensitive data.

Reproduction

To reproduce the cross-site scripting vulnerability, create a profile and inject a script payload into the Address field. The script will execute when the profile is viewed. For the SQL injection vulnerability, send a SQL injection payload through the phone_no parameter via a POST request to the user_setting endpoint.