itsourcecode Document Management System SQL Injection Vulnerability in Login Component

A SQL injection vulnerability exists in itsourcecode Document Management System version 1.0, specifically within the Login component's '/loging.php' file. The issue arises because the application improperly sanitizes the 'username' parameter, allowing attackers to inject malicious SQL code. This vulnerability can be exploited remotely, without authentication.

Impact

Exploitation of this vulnerability allows for unauthorized manipulation of SQL queries, potentially leading to unauthorized database access, data leakage, data tampering, and disruption of service.

Reproduction

The vulnerability can be reproduced by sending a POST request to 'loging.php' with the 'username' parameter. Injected SQL payloads can be used to exploit the vulnerability, such as boolean-based blind SQL injection techniques. The 'password' parameter can be used to fulfill the login requirement, but no valid credentials are necessary.

Remediation

It is recommended to use prepared statements and parameter binding to prevent SQL injection, validate and filter user input, minimize database user permissions, and conduct regular security audits.