PHPGurukul Art Gallery Management System SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in PHPGurukul Art Gallery Management System version 1.1. The issue resides in the '/art-enquiry.php' file, where the 'eid' parameter is manipulated, allowing attackers to inject malicious SQL queries. This vulnerability can be exploited remotely, leading to unauthorized database access, data manipulation, and potential leakage of sensitive information.

Impact

Exploitation of this vulnerability allows for unauthorized access to the database, manipulation or deletion of data, and access to sensitive information. Such actions could disrupt services and pose a significant threat to overall system security and business operations.

Reproduction

The vulnerability can be reproduced by sending a crafted request to the 'art-enquiry.php' file with an injected payload in the 'eid' parameter. This payload should be designed to exploit the time-based blind SQL injection vulnerability, such as by using a SQL injection payload that leverages the 'SLEEP' function to create a delay, indicating successful injection.

Remediation

It is recommended to use prepared statements and parameter binding to prevent SQL injection. Additionally, input validation and filtering should be implemented to ensure user input conforms to expected formats. Minimizing database user permissions and conducting regular security audits can further enhance security.