PuneethReddyHC Online Shopping System Advanced SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the action.php endpoint of PuneethReddyHC Online Shopping System Advanced version 1.0. This vulnerability arises from inadequate sanitization of user input in the keyword POST parameter, allowing attackers to inject arbitrary SQL commands. Exploitation of this vulnerability could lead to unauthorized data access, manipulation of database records, execution of administrative database operations, or potentially code execution through stacked queries, depending on the database management system's configuration.

Impact

Exploitation of this vulnerability allows for SQL injection, enabling attackers to retrieve, manipulate, or delete database records, execute administrative database commands, and possibly execute code via stacked queries, depending on the database management system's configuration.

Reproduction

To reproduce this vulnerability, send a POST request to the action.php endpoint with a payload that includes a SQL injection in the keyword parameter. The injection can be crafted to manipulate SQL query execution, such as by using boolean-based payloads that exploit the application's SQL query handling.

Remediation

To address this vulnerability, implement prepared statements and parameterized queries to ensure proper input handling. Additionally, sanitize and validate all user inputs, apply the principle of least privilege for the database user, and regularly update dependencies and security patches.