SourceCodester Simple To-Do List System SQL Injection Vulnerability in delete_task.php
Vulnerability
A critical SQL injection vulnerability has been identified in SourceCodester Simple To-Do List System version 1.0. The issue arises in the delete_task.php file, where user input is not properly sanitized before being used in SQL queries. This flaw allows attackers to manipulate the ID parameter, potentially leading to unauthorized access to database privileges. Exploitation of this vulnerability could result in the extraction of sensitive data or, if the database user has administrative rights, even compromise of the server hosting the database.
Impact
Exploitation of this vulnerability could allow attackers to gain elevated database privileges, with the potential to access or manipulate a significant amount of data. If the compromised database user has DBA rights, it could lead to obtaining privileges on the server host.
Reproduction
The vulnerability can be reproduced by sending a request to delete_task.php with a crafted ID parameter that exploits the SQL injection flaw. This can be done using a tool like sqlmap, targeting a MySQL database and employing the 'T' technique to extract database information.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.