Shanghai Lingdang Information Technology Lingdang CRM SQL Injection Vulnerability in event.php
Vulnerability
A SQL injection vulnerability has been identified in Shanghai Lingdang Information Technology Lingdang CRM versions through 8.6.5.4. The issue resides in the file crm/WeiXinApp/yunzhijia/event.php, where the openid parameter is manipulated, allowing for SQL injection. This vulnerability can be exploited remotely, and an exploit is publicly available.
Impact
Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate SQL queries to the database. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.
Reproduction
To reproduce this vulnerability, send a request to the event.php file with the action parameter set to 'get_userid' and include a crafted openid value that exploits the SQL injection vulnerability. The request can be made using a tool like sqlmap, which automates the process of finding and exploiting SQL injection vulnerabilities.
Remediation
Users are advised to upgrade to Lingdang CRM version 8.6.5 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.