Code-Projects Student Details Management System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Code-Projects Student Details Management System version 1.0. The issue resides in the 'index.php' file, where the 'roll' parameter in POST requests is vulnerable to injection. This flaw allows remote attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification. The vulnerability is exploitable without authentication, making it accessible to any user.

Impact

Exploitation of this vulnerability allows for arbitrary SQL injection, enabling attackers to extract, modify, or delete database information. The vulnerability also exposes the full file path of the affected script, which could aid in further attacks.

Reproduction

To reproduce this vulnerability, send a POST request to 'index.php' with a crafted 'roll' parameter that includes SQL injection payloads. The application will return SQL error messages that can be used to confirm the injection point. Once the injection is confirmed, UNION-based payloads can be used to extract data from the database.

Remediation

To address this vulnerability, use prepared statements with bound parameters to prevent SQL injection. Additionally, disable verbose error reporting in production environments to avoid disclosing sensitive information.