PHPGurukul Student Record System SQL Injection Vulnerability in Admin Profile Management

A critical SQL injection vulnerability has been identified in PHPGurukul Student Record System version 3.2. The issue resides in the admin-profile.php file, where the aemailid parameter is manipulated to inject malicious SQL code. This vulnerability allows remote attackers to interfere with SQL queries, potentially leading to unauthorized database access, data manipulation, and disruption of services.

Impact

Exploitation of this vulnerability allows attackers to inject malicious SQL queries, bypass authentication, access and modify database contents, and disrupt application services. This vulnerability is classified as critical due to the ease of exploitation and the significant impact on the application's database management system.

Reproduction

To reproduce this vulnerability, send a POST request to the admin-profile.php file with the aemailid parameter. Include a payload that exploits time-based blind SQL injection, such as one that uses the RLIKE operator to match against a regular expression that triggers a time delay, indicating successful injection.

Remediation

It is recommended to update the PHPGurukul Student Record System to a version that addresses this vulnerability. Implementing input validation and using prepared statements for database queries can help mitigate SQL injection risks.