Joomla JS Jobs Plugin SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the JS Jobs plugin for Joomla, affecting versions 1.1.5 through 1.4.2. This vulnerability allows authenticated administrators to execute arbitrary SQL commands by exploiting the 'fieldfor' parameter within the GDPR Field feature.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can execute arbitrary SQL commands. This could lead to unauthorized data access, data manipulation, or in some cases, executing commands on the server if the database is connected to the application layer in a vulnerable manner.

Reproduction

To reproduce this vulnerability, log into Joomla as an administrator and navigate to 'Dashboard > GDPR Fields > + Add New Field'. Create a new field by entering a title and text, then save the field. Capture the HTTP request using Burp Suite. The 'fieldfor' parameter can be manipulated to include SQL injection payloads, such as SQL commands or boolean-based injection techniques. After injecting the payload, SQLMap can be used to automate the exploitation of the SQL injection vulnerability.

Remediation

Users can update to JS Jobs version 1.4.3, which addresses the SQL injection vulnerability.