PHPGurukul Zoo Management System SQL Injection Vulnerability in Ticket Management

A critical SQL injection vulnerability has been identified in PHPGurukul Zoo Management System version 2.1. The issue resides in the file '/admin/add-normal-ticket.php', where the 'cprice' parameter can be manipulated to inject malicious SQL code. This vulnerability allows remote attackers to interfere with the application's database queries, potentially leading to unauthorized data access or modification.

Impact

Exploitation of this vulnerability allows attackers to execute arbitrary SQL commands, which could be used to access, modify, or delete database information. This type of vulnerability could also be exploited to execute administrative operations on the database or, in some cases, to execute commands on the server operating system.

Reproduction

To reproduce this vulnerability, send a POST request to '/zms/admin/add-normal-ticket.php' with the 'cprice' parameter set to a crafted payload that exploits the SQL injection. The payload should be designed to manipulate the SQL query processing, such as by using time-based blind injection techniques that leverage SQL functions like SLEEP to demonstrate the injection's effectiveness.

Remediation

It is recommended to update to a version of PHPGurukul Zoo Management System that addresses this vulnerability. If no such version is available, consider applying general SQL injection mitigation techniques, such as using prepared statements and parameterized queries to ensure user input is properly sanitized before being included in SQL commands.