SourceCodester Pizzafy Ecommerce System SQL Injection Vulnerability

A SQL injection vulnerability has been identified in SourceCodester Pizzafy Ecommerce System version 1.0. The issue arises in the 'save_user' function within '/admin/ajax.php?action=save_user'. This vulnerability allows remote attackers to manipulate SQL queries by injecting malicious payloads, potentially leading to unauthorized data access or manipulation.

Impact

Exploitation of this vulnerability allows for error-based SQL injection, where an attacker can inject SQL commands that cause the database to return error messages. These messages can reveal sensitive information, such as database structure and contents. Additionally, this vulnerability could be exploited to modify or delete database records, and potentially escalate privileges by accessing session-related data.

Reproduction

To reproduce this vulnerability, send a POST request to '/admin/ajax.php?action=save_user' with an injected SQL payload in the 'username' parameter. The injection can be crafted to exploit the application's SQL query handling, particularly in the user management functionality.

Remediation

Users are advised to update to the patched version of SourceCodester Pizzafy Ecommerce System, if available. If no update is provided, consider applying manual code fixes to sanitize SQL inputs and prevent injection attacks.