AT Software Solutions ATSVD SQL Injection Vulnerability in Password Recovery Feature

A critical SQL injection vulnerability has been identified in AT Software Solutions ATSVD versions prior to 3.4.1. The issue arises in the 'Esqueceu a senha' (Forgot Password) feature, specifically through the 'txtCPF' parameter. This vulnerability allows remote exploitation without authentication, enabling attackers to manipulate SQL queries and potentially access or modify database information.

Impact

Exploitation of this vulnerability allows for blind Boolean-based SQL injection, where an attacker can infer database information by sending crafted SQL payloads that exploit the application's SQL query handling. This could lead to unauthorized data access or manipulation.

Reproduction

To reproduce this vulnerability, send a POST request to the application's root endpoint with the 'txtCPF' parameter. Include a payload that exploits the application's SQL query processing, such as one that manipulates the SQL command to extract database information. The response can be used to infer database details, confirming the successful exploitation of the vulnerability.

Remediation

Users are advised to upgrade to AT Software Solutions ATSVD version 3.4.2 or later.