Mura SQL Injection Vulnerability in beanFeed.cfc Allowing Sort Direction Manipulation

A SQL injection vulnerability has been identified in Mura versions prior to 10.1.14, specifically within the beanFeed.cfc component. This vulnerability allows for injection of malicious SQL queries by manipulating the sortDirection parameter of the getQuery method, potentially leading to unauthorized data access or modification.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can interfere with the application's database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

To reproduce this vulnerability, send a request to the beanFeed.cfc component's getQuery method. Include a crafted sortDirection parameter that injects malicious SQL. The injection can be tested by, for example, attempting to manipulate the SQL query's logic or structure, such as by adding SQL commands that could be executed by the database.

Remediation

Users are advised to update to Mura version 10.1.14 or later, where this vulnerability has been addressed.