Code-Projects Content Management System SQL Injection Vulnerability in Delete.php

A SQL injection vulnerability exists in Code-Projects Content Management System version 1.0, specifically within the admin/delete.php file. The issue arises because the 'del' parameter can be manipulated to inject malicious SQL code. This unsanitized input is directly used in SQL queries, allowing attackers to alter query execution and potentially access or modify database information. The vulnerability can be exploited remotely without authentication.

Impact

Exploitation of this vulnerability allows for unauthorized database access, manipulation of data, and could lead to a complete compromise of the system.

Reproduction

The vulnerability can be reproduced by sending a GET request to the admin/delete.php file with a crafted 'del' parameter that includes SQL injection payloads. The injection point has been identified as a time-based blind SQL injection, which can be exploited by using payloads that, for example, cause the database to pause execution for a few seconds before responding.

Remediation

It is recommended to use prepared statements and parameter binding to prevent SQL injection, validate and filter user input, and limit database user permissions to the minimum required.