Shanghai Lingdang Information Technology Lingdang CRM SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in Shanghai Lingdang Information Technology Lingdang CRM versions through 8.6.4.7. The issue arises in the HTTP POST request handler, specifically within the file '/crm/crmapi/erp/tabdetail_moduleSave_dxkp.php'. The vulnerability is triggered by manipulating the 'getvaluestring' argument, allowing for remote exploitation.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can interfere with the application's database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

The vulnerability can be reproduced by sending an HTTP POST request to '/crm/crmapi/erp/tabdetail_moduleSave_dxkp.php' with a crafted 'getvaluestring' argument that exploits the application's SQL query handling. This can be done using tools like Burp Suite or Postman.

Remediation

Users are advised to upgrade to Lingdang CRM version 8.6.5.2, which addresses this vulnerability by implementing parameterized queries and input sanitization. The vendor also recommends this version for additional security enhancements.