CVE-2022-29709

Vulnerability

CommuniLink CLink Office v2.0 contains multiple SQL injection vulnerabilities in the login functionality. The username and password parameters are not properly sanitized before being used in SQL queries, allowing an attacker to inject arbitrary SQL commands. This affects the web application as described in the vendor site [1] and the security advisory [2].

Exploitation

An attacker can exploit these vulnerabilities by sending crafted SQL payloads in the username or password fields during the authentication process. No prior authentication is required, as the login page is publicly accessible. The attacker only needs network access to the application. The exploitation steps involve submitting malicious input through the login form, which is then processed by the vulnerable code [2].

Impact

Successful exploitation allows an attacker to bypass authentication, retrieve sensitive data from the database (such as user credentials or other confidential information), and potentially execute administrative operations. The impact includes information disclosure and possible privilege escalation, compromising the confidentiality and integrity of the system [2].

Mitigation

As of the publication date, no official patch has been released by CommuniLink. Users are advised to implement input validation and use parameterized queries as a workaround to prevent SQL injection. The vendor site [1] does not mention any fix or update for this issue. Until a patch is available, restricting network access to the application and applying web application firewall rules may help mitigate the risk [1][2].