PHPGurukul Online Course Registration SQL Injection Vulnerability in level.php

A critical SQL injection vulnerability has been identified in PHPGurukul Online Course Registration version 3.1, specifically within the admin level.php file. The issue arises from inadequate validation of the 'level' parameter, allowing attackers to inject malicious SQL queries. This vulnerability can be exploited remotely, granting unauthorized access to the database, manipulation of data, and potential control over the system.

Impact

Exploitation of this vulnerability allows for unauthorized database access, data manipulation, and could lead to complete system control.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/onlinecourse/admin/level.php' endpoint with a crafted 'level' parameter that includes a SQL injection payload. This payload can be designed to exploit time-based blind SQL injection, such as by using a SQL injection technique that leverages the 'SLEEP' function to create a time delay, indicating successful exploitation.

Remediation

To address this vulnerability, it is recommended to implement prepared statements and parameter binding to separate SQL code from user input, conduct thorough input validation and filtering, and minimize database user permissions to the least required.