Apartment Visitors Management System SQL Injection Vulnerability in Forgot Password Feature

A SQL injection vulnerability has been identified in the Apartment Visitors Management System (AVMS) version 1.1. The issue arises in the 'email' parameter of the forgot password page (forgot-password.php). This vulnerability allows an unauthenticated attacker to manipulate backend SQL queries, potentially leading to the extraction of sensitive user data from the database.

Impact

Exploitation of this vulnerability allows unauthorized access to the database, with the possibility of disclosing sensitive user information.

Reproduction

To reproduce this vulnerability, navigate to the forgot password page of the Apartment Visitors Management System. In the email parameter, input a crafted SQL payload that exploits the application's SQL query handling. This can be done using a tool like Burp Suite to intercept and modify the request before it is sent to the server. Alternatively, SQLmap can be used to automate the exploitation process.

Remediation

It is recommended to use prepared statements or parameterized queries to prevent SQL injection vulnerabilities. Additionally, all user inputs should be validated and sanitized before being processed by the application. Output encoding should be applied to user-controlled data to mitigate the risk of injection attacks.