Code-Projects Online Product Reservation System SQL Injection Vulnerability in Order View Component

A critical SQL injection vulnerability has been identified in the Online Product Reservation System version 1.0, specifically within the order_view.php file. The issue arises from the GET parameter transaction_id being directly concatenated into an SQL query without proper validation. This vulnerability allows remote attackers to manipulate the transaction_id parameter, leading to unauthorized access to order details and sensitive customer information. The vulnerability is exacerbated by the absence of authentication requirements for accessing the order view functionality.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can interfere with the application's database queries. This could lead to unauthorized data access, such as extracting, modifying, or deleting database information. In this case, the vulnerability could be used to access order and product details, as well as sensitive customer data.

Reproduction

To reproduce this vulnerability, access the order_view.php file and provide a transaction_id parameter through the URL. The application will process the request without validating the input, allowing for SQL injection. This vulnerability can be exploited using SQL injection tools like sqlmap, which can automate the injection process and extract database information.