SourceCodester Gym Management System Cross-Site Request Forgery Vulnerability

A cross-site request forgery (CSRF) vulnerability exists in SourceCodester Gym Management System version 1.0. The application fails to validate the origin of sensitive requests or require CSRF tokens, allowing attackers to create malicious web pages that can perform unauthorized actions on behalf of authenticated users. This could disrupt the system's business logic.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of users, potentially allowing attackers to manipulate user data or disrupt application functionality. If exploited in conjunction with other vulnerabilities or for sensitive operations, the impact could be significantly greater.

Reproduction

To reproduce this vulnerability, create a web page that includes a form targeting the 'admin/student_action.php' endpoint. The form should be set to submit via POST and include hidden fields with the necessary data to perform an action, such as adding a student. Once the form is submitted, the server processes the request without any validation, confirming the vulnerability.

Remediation

It is recommended to implement CSRF tokens for all sensitive operations, validate the origin of requests, and configure cookies with 'SameSite' attributes to prevent cross-site exploitation.