Code-Projects Nimrod SQL Injection Vulnerability in ViewMenuCategoryRestController

A critical SQL injection vulnerability has been identified in Code-Projects Nimrod version 0.8. The issue resides in the ViewMenuCategoryRestController.java file, where the 'Name' parameter is manipulated, leading to unauthorized SQL command execution. This vulnerability can be exploited remotely, allowing attackers to access and potentially steal sensitive data from the database.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can execute arbitrary SQL commands. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

To reproduce this vulnerability, send a GET request to the '/nimrod/api/user/view_menu_category/search_all_by_name' endpoint. Include a crafted 'q' parameter that exploits the SQL injection flaw by injecting SQL payloads that, for example, use 'AND (SELECT SLEEP(2))' to test the injection and potentially extract data.