Simple CMS SQL Injection Vulnerability in Users Module

A remote SQL injection vulnerability has been identified in Simple CMS version 2.1. This vulnerability allows privileged attackers to inject unfiltered SQL commands into the users module via the admin.php file. Exploitation of this vulnerability could lead to a compromise of the database management system and the web application.

Impact

Successful exploitation allows for remote SQL injection, leading to potential database management system compromise and manipulation of the web application's database.

Reproduction

To reproduce this vulnerability, a privileged user must access the admin panel and navigate to the users module. Once there, the 'addUser' or 'editUser' functions can be used to inject SQL payloads into the 'name', 'username', and 'password' fields. The injection takes advantage of the application's failure to properly sanitize input, allowing malicious SQL commands to be executed on the database.

Remediation

It is recommended to update to the latest version of Simple CMS, which addresses this vulnerability. Additionally, implement input validation to restrict special characters and SQL injection payloads, and use prepared statements to safeguard SQL queries.