PHPGurukul Park Ticketing Management System SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in PHPGurukul Park Ticketing Management System version 2.0. The issue resides in the file '/add-normal-ticket.php', where the 'noadult' parameter (along with 'nochildren', 'aprice', and 'cprice') can be manipulated to inject malicious SQL queries. This vulnerability allows attackers to access and manipulate the database without authorization, potentially leading to unauthorized data access, data modification or deletion, and exploitation of the underlying system.

Impact

Exploitation of this vulnerability allows for unauthorized database access, manipulation or deletion of data, and could lead to a complete compromise of the system.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/ptms/add-normal-ticket.php' with the 'noadult' parameter crafted to include a SQL injection payload. This request can be made using tools like sqlmap, which automates the process of finding and exploiting SQL injection vulnerabilities.

Remediation

It is recommended to use prepared statements and parameter binding to prevent SQL injection. Additionally, input validation and filtering should be implemented to ensure that user input conforms to expected formats. Finally, database user permissions should be minimized to reduce the impact of a potential exploitation.