SO Planning is a Simple Online Planning tool. Allows you to plan working periods for each person of your team, in a visual / printable result. Shows a line by person and the corresponding working days.
👨🏼💻Discovered by Pablo Santiago.
📝Published 02/01/2020.
💉CVE-2019–20179
📄Vulnerable version ≤ 1.45
Attack Vector / Criticality — HIGH
Through the SQL injection vulnerability, a malicious user could inject SQL code in order to steal information from the database, modify data from the database, even delete database or data from
them.Vulnerable parameter
The ‘by’ parameter is vulnerable to the injection of SQL attacks, in the resource /user_list.php
Demo With BurpSuite
The next demo shows how the parameter ‘by’ its vulnerable to sql injections, when send a normal POST request without payload the application responds in 11,12,20 miliseconds, however if we introduce the payload %2c(select*from(select(sleep(5)))a) the application will respond in 5 seconds.
PoC with SQLmap
