TDuckCloud tduck-platform SQL Injection Vulnerability in QueryProThemeRequest Function

A critical SQL injection vulnerability has been identified in TDuckCloud tduck-platform versions prior to 4.0. The issue arises in the QueryProThemeRequest function within the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The vulnerability allows remote attackers to manipulate the color parameter, leading to unauthorized access to sensitive information. This exploitation is made easier by the lack of proper input sanitization, allowing attackers to inject malicious SQL commands that could be executed by the application's database.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can interfere with the application's database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

To reproduce this vulnerability, send a request to the QueryProThemeRequest function with a crafted color parameter that includes SQL injection payloads. The lack of input validation will allow the injected SQL code to be executed, demonstrating the vulnerability.