SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in user_payment_update.php via the order_id POST parameter.
The vulnerability exists in the POST parameter named order_id, transmitted to the user_payment_update.php script. Input data is not properly validated or sanitized before being included in the SQL query. An attacker can inject malicious SQL code that will be executed directly by the database engine. The attack does not require authentication or any user interaction.
An attacker can gain full access to the database — read, modify, or delete its contents, including customer and transaction data. Depending on server configuration, it may also be possible to take control of the operating system.
Apply patches available from the vendor according to references. As an immediate safeguard, it is recommended to restrict access to the vulnerable endpoint at the firewall or web server level and implement parameterized SQL queries (prepared statements) in the application code.
SourceCodester Client Database Management System version 1.0 — user_payment_update.php file, POST parameter order_id.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HLerouxyxchire Client Database Management System
APPLerouxyxchire1.0
Related vulnerabilities
SQL Injection w SourceCodester Client Database Management System 1.0
SQL Injection w SourceCodester Client Database Management System 1.0
SQL Injection w SourceCodester Client Database Management System 1.0
Dowolne przesyłanie plików i RCE w SourceCodester Client Database Management System 1.0
RCE poprzez Arbitrary File Upload w SourceCodester Client Database Management System 1.0