Code-Projects Exam Form Submission SQL Injection Vulnerability

A critical SQL injection vulnerability has been identified in the Code-Projects Exam Form Submission version 1.0, specifically within the '/register.php' file. This vulnerability arises from inadequate validation of user input in the 'MULTIPART USN' parameter, allowing attackers to inject malicious SQL queries. Exploitation of this vulnerability could lead to unauthorized access to the database, manipulation or deletion of data, and exposure of sensitive information. Notably, this vulnerability can be exploited remotely without any authentication.

Impact

Exploitation of this vulnerability allows for SQL injection, enabling attackers to manipulate database queries. This could result in unauthorized database access, leakage or alteration of sensitive data, and potentially executing malicious payloads on the server, leading to a broader system compromise.

Reproduction

The vulnerability can be reproduced by sending a POST request to 'register.php' with crafted data that includes a malicious payload in the 'USN' parameter. This payload can be designed to exploit the SQL injection vulnerability, such as by using SQL injection techniques that rely on boolean-based, error-based, or time-based blind SQL injection methods. Additionally, the same request can include a file named 'shell.php' in the 'img' parameter, which, when uploaded, could be executed to gain further access or control over the server.

Remediation

To address this vulnerability, it is recommended to implement prepared statements and parameter binding to prevent SQL injection. Additionally, user input should be validated and filtered to ensure it meets expected formats. Minimizing database user permissions and conducting regular security audits can also help enhance overall security.