Car Booking System PHP SQL Injection Vulnerability in Sign-In Component

A SQL injection vulnerability has been identified in the sign-in component of Car Booking System PHP version 1.0. The issue allows attackers to manipulate SQL queries, potentially leading to unauthorized database access, data exfiltration, modification of information, and execution of arbitrary code.

Impact

Exploitation of this vulnerability allows attackers to execute arbitrary SQL commands, potentially leading to unauthorized database access, data manipulation, and execution of arbitrary code on the server.

Reproduction

To reproduce this vulnerability, navigate to the sign-in page of the application. Enter an email address and a password, then intercept the sign-in request using Burp Suite. Send the intercepted request to the Repeater tool, and modify the email parameter by appending a crafted SQL payload that exploits a time-based SQL injection vulnerability. After sending the modified request, observe the response delay, which indicates successful exploitation.

Remediation

To mitigate this vulnerability, use prepared statements and parameter binding to separate SQL code from user input, preventing injection attacks. Additionally, validate and filter user input to ensure it meets expected formats, and minimize database user permissions to limit potential damage from an exploited vulnerability.