PHPGurukul News Portal SQL Injection Vulnerability in Edit Subadmin Admin File

A critical SQL injection vulnerability has been identified in PHPGurukul News Portal Project version 4.1. The issue resides in the admin file 'edit-subadmin.php', where the 'emailid' parameter can be manipulated to inject malicious SQL queries. This vulnerability can be exploited remotely, without any authentication, allowing attackers to access and manipulate the database, potentially leading to unauthorized data access, data modification or deletion, and disruption of services.

Impact

Exploitation of this vulnerability allows for unauthorized database access via the 'emailid' parameter, with the potential to leak, modify, or delete sensitive data. Additionally, it could lead to unauthorized system control and service disruption.

Reproduction

The vulnerability can be reproduced by sending a POST request to 'admin/edit-subadmin.php' with the 'emailid' parameter. The request should include a crafted SQL payload that exploits the SQL injection vulnerability, such as a time-based blind SQL injection payload that uses the 'SLEEP' function to demonstrate the injection.

Remediation

No specific remediation is known for this vulnerability. However, general best practices for preventing SQL injection should be followed, such as using prepared statements and parameterized queries, validating and sanitizing user input, and minimizing database user privileges.