WeGIA SQL Injection Vulnerability in nextPage Parameter of control.php

A SQL injection vulnerability exists in WeGIA version 3.2.0, specifically within the nextPage parameter of the controle/control.php endpoint. This vulnerability allows attackers to manipulate SQL queries, potentially leading to unauthorized access to sensitive database information, including table names and personal data. Exploitation of this vulnerability could also allow for the manipulation or deletion of database records, and in some cases, could disrupt system availability.

Impact

Exploitation of this vulnerability could result in unauthorized access to and manipulation of database information, including sensitive personal data. Additionally, it could disrupt the application's normal functioning by causing system downtime.

Reproduction

The vulnerability can be reproduced by sending a crafted request to the controle/control.php endpoint with a payload that exploits the SQL injection flaw in the nextPage parameter. This can be done manually or using automated tools like SQLMap, which can exploit the vulnerability and dump the database contents.

Remediation

Users are advised to update to WeGIA version 3.2.0 or later, where this vulnerability has been addressed.