Codeprojects Food Ordering Review System SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in version 1.0 of the Codeprojects Food Ordering Review System. The issue resides in the file '/pages/signup_function.php', where the 'fname' parameter is manipulated to inject malicious SQL code. This vulnerability can be exploited remotely, without any authentication, allowing attackers to access and manipulate the database, potentially leading to unauthorized data access, data modification or deletion, and disruption of services.

Impact

Exploitation of this vulnerability allows for unauthorized database access via the 'fname' parameter, enabling attackers to execute malicious SQL queries. This could result in unauthorized data access, data manipulation, and in some cases, executing commands on the server, depending on the application's database interaction.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/pages/signup_function.php' with a crafted 'fname' parameter that includes malicious SQL payloads. This can be done using tools like sqlmap, which automates the process of finding and exploiting SQL injection vulnerabilities.

Remediation

To address this vulnerability, it is recommended to implement prepared statements and parameter binding to prevent SQL injection. Additionally, input validation and filtering should be applied to ensure that user input meets expected formats, blocking malicious data. Finally, database user permissions should be minimized, granting only the necessary rights for operations and avoiding high-privilege accounts.