Joomla! Component onisPetitions SQL Injection Scanner

Joomla! is a widely used open-source Content Management System (CMS) designed to help users build websites and online applications. The platform is utilized by bloggers, businesses, and organizations to create dynamic web content. Through its extensibility and ease of use, Joomla! supports various components and plugins, such as onisPetitions, to enhance website functionality. The onisPetitions component allows users to manage petitions on their Joomla websites. However, like many CMS systems, Joomla! can be susceptible to vulnerabilities if not properly maintained and secured.

SQL Injection is a critical web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database. An attacker can exploit this vulnerability by inputting malicious SQL code into vulnerable parameters to access, delete, or alter the data in the database. In the case of Joomla! Component onisPetitions, the vulnerability is specifically found in the 'tag' parameter. If exploited, it allows an attacker to execute arbitrary SQL commands, posing a significant risk to the database's confidentiality, integrity, and availability.

The SQL Injection vulnerability in the Joomla! Component onisPetitions arises from its failure to properly sanitize the 'tag' parameter in the URL query. The vulnerable endpoint "/index.php?option=com_onispetitions&view=petitions" allows insertion of SQL code through the 'tag' parameter. The attacker might use payloads such as "1' and extractvalue(1, concat(0x7e, (select md5(1))))#". Successful exploitation returns the MD5 hash of '1', indicating the vulnerability's existence and allowing further malicious queries to be executed.

When exploited, this vulnerability can have severe consequences, like unauthorized access to sensitive data, modification or deletion of database records, and potentially full control over the system. It may lead to the disclosure of confidential information, including user credentials and system configuration, undermining trust in the affected site. The risk of data breaches increases, jeopardizing both the site owner's and users' privacy and security.