SourceCodester Sales and Inventory System SQL Injection Vulnerability in Update Stock Component

A SQL injection vulnerability has been identified in SourceCodester Sales and Inventory System version 1.0. The issue arises in the update_stock.php file, where the sid parameter in the HTTP GET request is not properly sanitized. This flaw allows authenticated attackers to inject arbitrary SQL commands, potentially leading to unauthorized data access or manipulation. The vulnerability can be exploited remotely.

Impact

Exploitation of this vulnerability allows attackers to inject SQL commands through the sid parameter, with the backend database being MySQL. The vulnerability supports UNION-based injections, enabling direct retrieval of database information. Additionally, the vulnerability can be exploited using Boolean-based or Time-based blind SQL injection techniques.

Reproduction

To reproduce this vulnerability, log into the application and send a crafted HTTP GET request to update_stock.php. Include a malicious payload in the sid parameter to exploit the SQL injection vulnerability. Alternatively, use sqlmap to automate the exploitation process.