Inout Article Base CMS SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Inout Article Base CMS, allowing unauthenticated attackers to manipulate database queries. This vulnerability exists in the 'p' and 'u' parameters of GET requests sent to 'portalLogin.php'. Attackers can use XOR-based payloads to inject SQL code, potentially leading to the extraction of sensitive database information or causing a denial-of-service condition through time-based attacks.

Impact

Exploitation of this vulnerability allows for SQL injection, where attackers can interfere with database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database. Additionally, the vulnerability can be exploited to cause a denial-of-service by using time-based SQL injection techniques.

Reproduction

To reproduce this vulnerability, send a GET request to 'portalLogin.php' with either the 'p' or 'u' parameter. Include a crafted payload that exploits the SQL injection vulnerability by using XOR-based injection techniques, such as timing-based SQL injection payloads that leverage SQL's conditional logic to create a delay in the response, indicating successful exploitation.