SourceCodester Inventory Management System Password Recovery Vulnerability

A critical vulnerability has been identified in the SourceCodester Inventory Management System version 1.0. The issue resides in the password reset functionality within the file '/model/user/resetPassword.php'. This vulnerability allows an unauthenticated attacker to reset the password of any user, including administrators, without proper verification, leading to unauthorized account access and potential system compromise.

Impact

Exploitation of this vulnerability allows for unauthorized password resets, enabling attackers to gain access to user accounts, including those of administrators. This could result in a complete takeover of the compromised accounts and associated privileges.

Reproduction

The vulnerability can be reproduced by sending a password reset request to the 'resetPassword.php' file without any authentication. This can be done by manipulating the password reset mechanism, which lacks proper validation, to reset passwords indiscriminately.