Code-Projects Student Web Portal SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Code-Projects Student Web Portal version 1.0. The issue resides in the file 'check_user.php', where user input from the 'username' parameter is directly concatenated into an SQL query without proper sanitization. This vulnerability allows remote attackers to manipulate the SQL query, potentially leading to unauthorized data access or modification.

Impact

Exploitation of this vulnerability could disrupt the application's username verification process, create blind SQL injection opportunities to extract database information, or allow disclosure of sensitive data if the database user has extensive read permissions.

Reproduction

To reproduce this vulnerability, send a request to the '/check_user.php' endpoint with a crafted 'username' parameter that includes SQL injection payloads. The server will execute the injected SQL code, allowing manipulation of the database query and potentially leading to data extraction or modification.

Remediation

The vulnerability can be fixed by using prepared statements to parameterize SQL queries, preventing injection attacks. A secure patch example is available in the vulnerability details.