Executive Summary

This vulnerability is a SQL injection in the krishanmuraiji SMS version 1.0, specifically in the /studentms/admin/edit-class-detail.php file via the editid GET parameter. An attacker can exploit this by using SQL SLEEP() commands to cause controlled delays, which allows them to infer the contents of the database. This means the attacker can extract information from the database by measuring response times.

Useful 0 Not Useful 0

Impact Analysis

The vulnerability can lead to a full database compromise, especially since it exists within an administrative module. This means an attacker could potentially access, modify, or delete sensitive data stored in the database, leading to data breaches and loss of data integrity.

Useful 0 Not Useful 0

Detection Guidance

This vulnerability can be detected by testing the /studentms/admin/edit-class-detail.php endpoint with the editid GET parameter for SQL injection, specifically by injecting SQL commands that cause controlled delays such as using the SQL SLEEP() function. For example, you can use curl or a browser to send requests like: curl 'http://target/studentms/admin/edit-class-detail.php?editid=1 AND SLEEP(5)' and observe if the response is delayed, indicating vulnerability. [1]

Useful 0 Not Useful 0

Mitigation Strategies

Immediate mitigation steps include validating and sanitizing all user inputs, especially the editid GET parameter, to prevent SQL injection. Use prepared statements or parameterized queries in the code to handle database queries safely. Additionally, restrict access to the administrative module and monitor for suspicious activity until a patch or update is applied. [1]

Useful 0 Not Useful 0