WeGIA SQL Injection Vulnerability in dependente_editarEndereco.php Endpoint

A SQL injection vulnerability has been identified in WeGIA versions prior to 3.4.6. The issue resides in the 'idatendido_familiares' parameter of the '/html/funcionario/dependente_editarEndereco.php' endpoint. This vulnerability allows attackers to manipulate SQL queries, potentially accessing sensitive database information such as table names and personal data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive database information, including user data and application logs. Additionally, it allows for database enumeration and could escalate to remote code execution, depending on the database configuration. This vulnerability could result in a full compromise of the application, especially if combined with other vulnerabilities.

Reproduction

To reproduce this vulnerability, send a POST request to the '/html/funcionario/dependente_editarEndereco.php' endpoint with the 'idatendido_familiares' parameter. This can be done using a tool like sqlmap, targeting the 'idatendido_familiares' parameter to exploit the SQL injection.

Remediation

Users can update to WeGIA version 3.4.6 or later, where this vulnerability has been patched.