PHPGurukul Park Ticketing Management System SQL Injection Vulnerability in Profile.php

A critical SQL injection vulnerability has been identified in the PHPGurukul Park Ticketing Management System version 2.0. The issue resides in the profile.php file, where the adminname parameter is manipulated, allowing attackers to inject malicious SQL queries. This vulnerability can be exploited remotely without any authentication, potentially leading to unauthorized access to the database, data modification or deletion, and leakage of sensitive information.

Impact

Exploitation of this vulnerability allows for SQL injection, where attackers can interfere with the application's database queries. This could lead to unauthorized data access, data manipulation, and in some cases, executing administrative operations on the database.

Reproduction

The vulnerability can be reproduced by sending a POST request to profile.php with the adminname parameter. Inject a payload that exploits the SQL injection vulnerability, such as a time-based blind SQL injection payload that uses the RLIKE operator to test for SQL injection vulnerabilities.

Remediation

It is recommended to validate and sanitize user inputs, use prepared statements to prevent SQL injection, and minimize database user permissions.