Code-Projects Simple Stock System SQL Injection Vulnerability in checkuser.php

A SQL injection vulnerability has been identified in Code-Projects Simple Stock System version 1.0. The issue resides in the checkuser.php file, where the Username GET parameter is manipulated, allowing attackers to inject malicious SQL queries. This vulnerability can be exploited remotely, and an exploit is publicly available.

Impact

Exploitation of this vulnerability allows for SQL injection, which could lead to unauthorized data access, data manipulation, or bypassing authentication mechanisms.

Reproduction

The vulnerability can be reproduced by sending a crafted HTTP request to the checkuser.php file with a manipulated Username parameter. This can be done manually or using automated tools like SQLMap, which can detect and exploit SQL injection vulnerabilities.

Remediation

It is recommended to replace the vulnerable SQL query handling with prepared statements to prevent SQL injection. The advisory suggests using a prepared statement with a parameterized query to safely handle user input.