Projectworlds Online Shopping System SQL Injection Vulnerability in Cart Add Function

A critical SQL injection vulnerability has been identified in Projectworlds Online Shopping System version 1.0. The issue resides in the 'cart_add.php' file, specifically within the 'id' parameter. This vulnerability allows remote attackers to inject malicious SQL queries, bypassing authorization and potentially leading to unauthorized database access, data manipulation, and exploitation of sensitive information.

Impact

Exploitation of this vulnerability allows for unauthorized database access, manipulation or deletion of data, and extraction of sensitive information. Such actions could disrupt business operations and compromise system security.

Reproduction

The vulnerability can be reproduced by sending a GET request to 'store/cart_add.php' with a crafted 'id' parameter that includes malicious SQL payloads. This can be done using tools like sqlmap, which automate the injection process and exploit the vulnerability.

Remediation

It is recommended to implement prepared statements and parameter binding to prevent SQL injection. Additionally, input validation and filtering should be applied to ensure user input meets expected formats, blocking malicious data. Finally, database user permissions should be minimized, granting only necessary access rights.