PuneethReddyHC Online Shopping System Advanced SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the product.php page of PuneethReddyHC Online Shopping System Advanced version 1.0. The issue arises in the product_id GET parameter, which is not adequately validated before being used in a SQL statement. This vulnerability allows attackers to manipulate database queries, potentially leading to unauthorized data access, modification or deletion of records, and possible takeover of the application database.

Impact

Exploitation of this vulnerability allows for SQL injection, enabling attackers to manipulate database queries. This could lead to unauthorized data retrieval, modification or deletion of records, and potentially taking over the application database.

Reproduction

The vulnerability can be reproduced by sending a GET request to the product.php page with a crafted product_id parameter that includes SQL injection payloads. The injection point can be confirmed by observing error responses that indicate successful exploitation. Alternatively, tools like sqlmap can be used to automate the exploitation process.

Remediation

To address this vulnerability, it is recommended to use prepared statements and parameterized queries to prevent SQL injection. Additionally, inputs should be sanitized and strict type checking enforced.