Code-Projects Online Reviewer System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Code-Projects Online Reviewer System version 1.0. The issue resides in the login component, specifically within the 'login/index.php' file. The vulnerability is caused by inadequate validation of user input in the 'username' and 'password' fields, allowing attackers to inject malicious SQL queries. This exploitation can be performed remotely without any authentication.

Impact

Exploitation of this vulnerability allows attackers to manipulate SQL queries, potentially leading to unauthorized access to the database, modification or deletion of data, and access to sensitive information. Such actions could disrupt services and cause significant harm to the system's security and business operations.

Reproduction

To reproduce this vulnerability, send a POST request to 'login/index.php' with injected SQL payloads in the 'username' and 'password' fields. The injected SQL should be crafted to manipulate the application's SQL query processing, such as bypassing authentication or extracting database information. This can be done using tools like sqlmap, which automates the injection process and database exploitation.

Remediation

It is recommended to implement prepared statements and parameter binding to prevent SQL injection. This approach ensures that user input is properly sanitized and not executed as part of the SQL command. The vulnerability can be fixed by replacing direct input concatenation in SQL queries with parameterized queries.