KLiK Social Media Website SQL Injection Vulnerability in Private Message Handler

A SQL injection vulnerability has been identified in KLiK SocialMediaWebsite versions prior to 1.0.1. The issue resides in the Private Message Handler component, specifically within the file '/includes/get_message_ajax.php'. The vulnerability is triggered by manipulating the 'c_id' parameter, allowing remote attackers to execute arbitrary SQL commands. Exploitation can be performed using time-based blind injection techniques, such as 'SLEEP(5)', and UNION-based injection to extract sensitive database information, including user credentials, private messages, and system data.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can execute arbitrary SQL commands in the application's database. This could lead to unauthorized data access, such as retrieving user credentials, private messages, and other sensitive system information.

Reproduction

To reproduce this vulnerability, send a request to the '/includes/get_message_ajax.php' file with a crafted 'c_id' parameter that includes SQL injection payloads. The injection can be tested using time-based blind techniques, such as adding 'SLEEP(5)' to the 'c_id' parameter, or by using UNION-based injection to extract database information.