SourceCodester Pizzafy Ecommerce System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in SourceCodester Pizzafy Ecommerce System version 1.0. The issue arises in the 'save_menu' function within '/admin/ajax.php?action=save_menu'. This vulnerability allows remote attackers to manipulate SQL queries by injecting malicious payloads, potentially leading to unauthorized data access or manipulation.

Impact

Exploitation of this vulnerability allows for error-based SQL injection, where an attacker can inject SQL commands that cause the database to return error messages. These messages can reveal sensitive information, such as database structure and data, which could be used for further attacks. Additionally, this vulnerability could be exploited to modify or delete database records, and potentially escalate privileges by abusing session-related data.

Reproduction

To reproduce this vulnerability, send a POST request to '/admin/ajax.php?action=save_menu' with an injected SQL payload in the 'name' parameter. The injection can be crafted to exploit the application's SQL query handling, taking advantage of the lack of proper input sanitization.

Remediation

Users are advised to update to the patched version of the Pizzafy Ecommerce System, which includes improvements in input validation and SQL query handling to prevent injection attacks.