PHPGurukul Boat Booking System SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in PHPGurukul's Boat Booking System version 1.0. The issue arises in the file '/admin/booking-details.php', where the 'status' parameter in POST requests is not properly validated or sanitized before being used in SQL queries. This oversight allows attackers to inject malicious SQL code, potentially leading to unauthorized database access, data manipulation, and exploitation of the underlying system.

Impact

Exploitation of this vulnerability could allow attackers to access the database without authorization, modify or delete data, leak sensitive information, gain control over the system, and disrupt services.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/admin/booking-details.php' with an injected payload in the 'status' parameter that exploits time-based blind SQL injection. This can be done using tools like sqlmap, which automates the process of finding and exploiting SQL injection vulnerabilities.

Remediation

To address this vulnerability, it is recommended to use prepared statements and parameter binding to prevent SQL injection, validate and filter user input to ensure it meets expected formats, and limit database user permissions to the minimum necessary.