PHPGurukul Online Shopping Portal SQL Injection Vulnerability in Update Image Handler

A SQL injection vulnerability exists in PHPGurukul Online Shopping Portal Project version 2.1. The issue is located in the file '/admin/update-image2.php', within the Parameter Handler component. The vulnerability arises because the 'filename' parameter can be manipulated to inject malicious SQL queries. This unsanitized input is directly used in SQL commands, allowing attackers to access and manipulate the database remotely.

Impact

Exploitation of this vulnerability allows unauthorized users to inject SQL queries, potentially leading to unauthorized database access, data manipulation or deletion, and execution of administrative operations on the database.

Reproduction

To reproduce this vulnerability, send a POST request to '/admin/update-image2.php' with a crafted 'filename' parameter that includes SQL injection payloads. The injection can be verified by observing the application's response or by using a tool like sqlmap to automate the exploitation process.

Remediation

It is recommended to sanitize and validate user inputs, particularly those that will be used in SQL queries. Implementing prepared statements can help prevent SQL injection attacks by separating SQL code from data. Additionally, reviewing and tightening database permissions can mitigate the impact of such vulnerabilities.