Code-Projects Prison Management System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Code-Projects Prison Management System version 2.0. The issue arises in the file '/admin/search1.php', where the 'keyname' parameter is manipulated, allowing for remote exploitation. The vulnerability exists because user input is directly concatenated into SQL queries without proper sanitization or validation, enabling attackers to interfere with the SQL command execution.

Impact

Exploitation of this vulnerability allows attackers to manipulate SQL queries, potentially leading to unauthorized access to, or modification of, sensitive data within the application database. In this case, it could involve accessing or altering confidential student information such as names, IDs, grades, and addresses. Additionally, the vulnerability could be exploited to execute database commands that escalate privileges to the underlying server, with severe consequences such as compromising the entire system and facilitating lateral movement within the network.

Reproduction

To reproduce this vulnerability, send a request to '/admin/search1.php' with a crafted 'keyname' parameter that includes SQL injection payloads. The lack of input validation will allow the injected SQL to be executed, demonstrating the vulnerability.