GFast SQL Injection Vulnerability in Operation Log Management
Vulnerability
A SQL injection vulnerability has been identified in GFast versions 2.0 through 3.2. The issue arises in the 'OrderBy' parameter of the '/api/v1/system/operLog/list' endpoint. This vulnerability allows an attacker with administrative privileges to execute arbitrary SQL commands, potentially leading to unauthorized data access or manipulation.
Impact
Exploitation of this vulnerability allows for arbitrary SQL code execution on the application's database, which could be used to manipulate or extract sensitive data.
Reproduction
To reproduce this vulnerability, an authenticated user with administrative rights can send a request to the '/api/v1/system/operLog/list' endpoint. The 'OrderBy' parameter should be crafted to include SQL injection payloads, such as time-based delay functions, to verify if the injection is successful. This can be done using tools like sqlmap, which automates the process of finding and exploiting SQL injection vulnerabilities.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.