Homey BNB SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Homey BNB version 4, an Airbnb clone script. This vulnerability allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'val' parameter. Exploitation of this vulnerability can lead to the extraction of sensitive database information. The issue arises in the 'admin/getrecord.php' endpoint, where malicious 'val' values can be sent via GET requests to access unauthorized data.

Impact

Exploitation of this vulnerability allows for SQL injection, enabling attackers to manipulate database queries and potentially access or modify sensitive database information.

Reproduction

The vulnerability can be reproduced by sending a GET request to the 'admin/getrecord.php' endpoint with a crafted 'val' parameter that includes malicious SQL code. This injection can be used to extract sensitive data from the database.