Joomla Responsive Portfolio SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the Joomla Responsive Portfolio component, version 1.6.1. This vulnerability allows authenticated attackers to execute arbitrary SQL commands by injecting malicious SQL code through multiple filter parameters in POST requests. The affected parameters include filter_type_id, filter_pid_id, and filter_search. Exploitation of this vulnerability could lead to the extraction of sensitive database information, such as credentials and server details.

Impact

Exploitation of this vulnerability allows for arbitrary SQL command execution, which could be used to manipulate the database or extract sensitive information, including user credentials and server details.

Reproduction

To reproduce this vulnerability, an authenticated user can send a POST request to the administrator index.php with the option 'com_pofos' and the view 'pofoits'. The request must include injected SQL payloads in the filter_type_id, filter_pid_id, or filter_search parameters. The injection can be crafted to exploit boolean-based blind, error-based, or time-based blind SQL injection techniques.