Code-Projects Student Result Manager SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Code-Projects Student Result Manager version 1.0. The issue arises in the file 'src/students/Database.java', where SQL statements are constructed by concatenating user-supplied input (specifically 'roll', 'name', and 'gpa') directly into the SQL query. This untrusted input is then executed using 'Statement.execute()', allowing an attacker to manipulate the SQL execution. The vulnerability can be exploited remotely, with the potential to read, modify, or delete database information, and could lead to a complete database compromise depending on the database privileges held.

Impact

Exploitation of this vulnerability allows for arbitrary SQL injection, enabling attackers to alter SQL query execution. This could result in unauthorized data access, data manipulation, or a complete compromise of the database, depending on the privileges assigned.

Reproduction

To reproduce this vulnerability, input must be provided in the 'roll' parameter that includes SQL injection payloads. For example, entering a roll number such as ' || (SELECT version()) || ' would inject SQL code that could be executed by the database.