Portabilis i-Educar SQL Injection Vulnerability in ComponenteCurricular Module

A SQL injection vulnerability has been identified in Portabilis i-Educar versions through 2.10. The issue resides in the '/module/ComponenteCurricular/edit' endpoint, specifically within the 'id' parameter. This vulnerability allows remote attackers to manipulate SQL queries, potentially leading to unauthorized data access, database enumeration, data manipulation, and denial-of-service conditions.

Impact

Exploitation of this vulnerability allows for Boolean-based SQL injection, where an attacker can inject SQL payloads that are executed by the database. This could lead to unauthorized access to sensitive information, such as credentials and personal data, extraction of database details, manipulation of database records, and denial-of-service impacts using time-based SQL queries.

Reproduction

The vulnerability can be reproduced using the SQLMap tool. After installing SQLMap, the command should be executed against the vulnerable endpoint, including the 'id' parameter. SQLMap will test for SQL injection vulnerabilities and, if successful, can be used to enumerate databases and extract sensitive information.