Code-Projects Student Membership System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in Code-Projects Student Membership System version 1.0. The issue arises in the User Registration Handler component, where user-submitted POST data is directly concatenated into SQL queries without proper filtering or parameterization. This flaw allows attackers to execute arbitrary SQL commands, potentially leading to data leaks, unauthorized data modification, or complete control over the database.

Impact

Exploitation of this vulnerability allows for arbitrary SQL command execution, with potential consequences including deletion of database tables, unauthorized access to sensitive data, modification of data, and gaining a database shell for complete database control.

Reproduction

To reproduce this vulnerability, send a POST request to the user registration endpoint (index.php) with crafted input that exploits the lack of SQL query parameterization. The input can include SQL commands that, when executed, could manipulate the database, such as dropping tables or accessing sensitive information.

Remediation

It is recommended to use prepared statements with PDO or MySQLi to prevent SQL injection. Additionally, validate and escape all user input before processing it in SQL queries.