Code-Projects Online Application System for Admission SQL Injection Vulnerability

A SQL injection vulnerability exists in Code-Projects Online Application System for Admission version 1.0. The issue arises in the Login Endpoint, specifically within the enrollment/index.php file. This vulnerability allows remote attackers to inject malicious SQL payloads by manipulating user input, such as login or search fields. The lack of proper input sanitization and the use of concatenated SQL queries create an opportunity for exploitation, potentially leading to authentication bypass, unauthorized access to sensitive data, modification or deletion of database records, and escalation of privileges.

Impact

Exploitation of this vulnerability can bypass authentication, including for administrative accounts, and allows access to sensitive user records. It also enables unauthorized modification or deletion of database entries, with the potential for lateral movement or further exploitation based on database privileges.

Reproduction

To reproduce this vulnerability, send a POST request to the login endpoint (enrollment/index.php) with crafted SQL payloads in the user ID and password fields. For example, injecting 'admin' OR '1'='1' into the user ID field can bypass authentication by manipulating the SQL query's WHERE clause.