ProjectWorlds Gym Management System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in ProjectWorlds Gym Management System version 1.0. The issue arises in the profile/edit.php page, where the 'id' parameter is not properly sanitized, allowing attackers to manipulate SQL queries and potentially access or modify database information.

Impact

Exploitation of this vulnerability allows attackers to execute arbitrary SQL commands, bypass authentication, escalate privileges, and access or modify sensitive data in the database.

Reproduction

To reproduce this vulnerability, log into the application and navigate to the 'Admin Panel'. From there, go to the 'View/Edit Members' section. Select a member to edit, which will take you to the edit account page. The 'id' parameter in the URL can then be manipulated to test for SQL injection. After confirming the vulnerability, it can be exploited using a tool like SQLMap.

Remediation

To address this vulnerability, implement parameterized queries or prepared statements for all database interactions. Validate and sanitize user input, ensuring that only expected values are accepted. Additionally, review database permissions to limit access rights and avoid using dynamic SQL that could be exploited.