PHPGurukul Men Salon Management System SQL Injection Vulnerability in Change Password Admin File

A critical SQL injection vulnerability has been identified in the PHPGurukul Men Salon Management System version 2.0. The issue resides in the admin/change-password.php file, where the 'Array-like' parameter is vulnerable to injection. This vulnerability allows remote attackers to manipulate SQL queries and execute unauthorized database operations. No login or authorization is required to exploit this vulnerability.

Impact

Exploitation of this vulnerability allows attackers to gain unauthorized access to the application's database, potentially leading to data manipulation, unauthorized data access, and disruption of services.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/admin/change-password.php' endpoint. The request must include a crafted payload that exploits the SQL injection vulnerability in the 'Array-like' parameter. This can be done using tools like sqlmap, which can automate the injection process and extract data from the database.

Remediation

Users are advised to update to a version of the Men Salon Management System that addresses this vulnerability. Implementing input validation and using prepared statements can also help mitigate SQL injection risks.