PHPGurukul Daily Expense Tracker SQL Injection Vulnerability in register.php

A critical SQL injection vulnerability has been identified in the Daily Expense Tracker application by PHPGurukul, specifically in version 1.1. The issue arises in the register.php file, where the email parameter is manipulated to inject malicious SQL queries. This vulnerability can be exploited remotely, allowing attackers to access and manipulate the database without authorization.

Impact

Exploitation of this vulnerability could lead to unauthorized database access, allowing attackers to modify or delete data, access sensitive information, and potentially disrupt application services.

Reproduction

The vulnerability can be reproduced by sending a POST request to the register.php file with a crafted email parameter that includes SQL injection payloads. This payload exploits time-based blind SQL injection techniques, such as using the SQL SLEEP function to indicate successful injection.

Remediation

To address this vulnerability, it is recommended to implement prepared statements and parameter binding to prevent SQL injection. Additionally, input validation and filtering should be applied to ensure user input conforms to expected formats. Finally, database user permissions should be minimized to limit access rights.