itsourcecode College Management System SQL Injection Vulnerability in Login Component

A SQL injection vulnerability exists in the itsourcecode College Management System version 1.0, specifically within the login feature. The issue arises in the file '/login/login.php', where the 'email' parameter can be manipulated to inject malicious SQL code. This vulnerability can be exploited remotely, without the need for authentication.

Impact

Exploitation of this vulnerability allows attackers to execute arbitrary SQL commands, potentially leading to unauthorized data access, data manipulation, and in some cases, executing commands on the server.

Reproduction

To reproduce this vulnerability, send a POST request to '/login/login.php' with the 'email' parameter. Include a crafted SQL payload that exploits the application's SQL query handling, such as a time-based blind SQL injection payload that uses the SQL 'SLEEP' function to demonstrate the injection.

Remediation

It is recommended to use prepared statements and parameter binding to prevent SQL injection. Additionally, input validation and filtering should be implemented to ensure user input conforms to expected formats. Minimizing database user permissions and conducting regular security audits can also help mitigate such vulnerabilities.