Introduction
- CVE-ID: CVE-2023-2681
- Vulnerability Type: SQL Injection
- Affected Product Code Base: Jorani v.1.0.0 (or before to v1.0.0)
- Affected Component: Affected source code the "id" parameter of the "/leaves/validate" section.
- Attack Type: Remote
- Impact: Extraction or alteration of information stored in the database, and on occasion, could lead to remote code execution and server compromise.
- Attack Vectors: To exploit the vulnerability, it is required to be authenticated with a low privilege user.
Description
A remote attacker, authenticated in the application as a user with few privileges, can perform queries with malicious SQL code on the path "/leaves/validate" and the "id" parameter, managing to extract arbitrary information from the database.