Code-Projects Simple Content Management System SQL Injection Vulnerability in Login Authentication Bypass
Vulnerability
A SQL injection vulnerability has been identified in Code-Projects Simple Content Management System version 1.0. The issue resides in the admin login file, specifically within the 'user' parameter, which is not properly sanitized before being used in SQL queries. This flaw allows remote, unauthenticated attackers to inject malicious payloads, bypass authentication, and gain full administrative access.
Impact
Exploitation of this vulnerability allows for authentication bypass, granting unauthorized users full access to the admin panel.
Reproduction
To reproduce this vulnerability, send a POST request to '/web/admin/login.php' with a crafted 'user' parameter that includes SQL injection payloads, such as 'test' OR '1'='1' -- -. This payload exploits the SQL query handling by injecting a boolean-based condition that is always true, effectively bypassing authentication.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.