Apartment Visitors Management System SQL Injection Vulnerability in Forgot Password Feature

A SQL injection vulnerability has been identified in the Apartment Visitors Management System (AVMS) version 1.1. The issue resides in the 'contactno' parameter on the forgot password page ('forgot-password.php'). This vulnerability allows an unauthenticated attacker to manipulate SQL queries in the backend, potentially leading to unauthorized access to sensitive database information.

Impact

Exploitation of this vulnerability could result in unauthorized access to database contents, allowing attackers to retrieve sensitive information.

Reproduction

To reproduce this vulnerability, navigate to the 'forgot-password.php' page of the Apartment Visitors Management System. In the 'contactno' parameter, input a crafted SQL payload that exploits the application's SQL query handling. This can be done using a tool like Burp Suite to intercept and modify the request before it is sent to the server. Once the payload is injected, the application may inadvertently disclose database information, demonstrating the SQL injection vulnerability.

Remediation

It is recommended to use prepared statements or parameterized queries to prevent SQL injection vulnerabilities. Additionally, all user inputs should be validated and sanitized before processing. Output encoding should be applied to user-controlled data to mitigate the risk of injection attacks.