Code-Projects Chat System SQL Injection Vulnerability in send_message.php

A critical SQL injection vulnerability has been identified in Code-Projects Chat System version 1.0. The issue resides in the file send_message.php, where the msg and id parameters are not properly sanitized before being used in a database query. This flaw allows remote attackers to inject malicious SQL code, potentially manipulating database queries and extracting sensitive information. The vulnerability can be exploited using time-based SQL injection techniques, such as introducing delays in the database response.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate database queries. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the database.

Reproduction

To reproduce this vulnerability, send a POST request to /user/send_message.php with the id parameter set to a valid chatroom ID and the msg parameter containing the SQL injection payload. The injected SQL code can be crafted to, for example, introduce a delay in the response, demonstrating the successful exploitation of the vulnerability.