Code-Projects Church Donation System SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in Code-Projects Church Donation System version 1.0. The issue resides in the file '/members/login_admin.php', where the 'username' parameter is improperly validated, allowing attackers to inject malicious SQL queries. This vulnerability can be exploited remotely, without any authentication, potentially leading to unauthorized database access, data manipulation, and disruption of services.

Impact

Exploitation of this vulnerability allows for unauthorized database access via the 'login_admin.php' file. Attackers can inject SQL commands that could be used to extract, modify, or delete database information. This could include sensitive data, depending on the application's database structure. The vulnerability could also be exploited to gain administrative access to the application.

Reproduction

To reproduce this vulnerability, send a POST request to '/members/login_admin.php' with the 'username' parameter. Inject a crafted SQL payload that exploits the application's SQL query handling, such as a boolean-based blind SQL injection payload. The injection takes advantage of the application's failure to properly sanitize user input before executing SQL queries.

Remediation

It is recommended to implement input validation and sanitization for the 'username' parameter to prevent SQL injection. Additionally, using prepared statements for database queries can help mitigate this vulnerability by separating SQL code from user input.