SmartBlog Blind SQL Injection Vulnerability in 'id_post' Parameter

A blind SQL injection vulnerability has been identified in SmartBlog version 2.0.1. The issue resides in the 'id_post' parameter of the details controller, allowing attackers to extract database information. Exploitation involves injecting crafted SQL queries that compare database information character by character, enabling systematic retrieval of data.

Impact

Exploitation of this vulnerability allows for blind SQL injection, where an attacker can manipulate SQL queries to extract information from the database. This could include sensitive data such as user information or application data, depending on the database structure and content.

Reproduction

To reproduce this vulnerability, send a request to 'index.php' with the 'fc', 'module', 'id_post', and 'controller' parameters. Inject SQL payloads into the 'id_post' parameter to test for SQL injection vulnerabilities. The exploitation can be automated with a Python script that tests each character returned by the database, effectively extracting information one character at a time.