A SQL injection vulnerability in Simple College Website 1.0 allows remote unauthenticated attackers to bypass the admin authentication mechanism in college_website/admin/ajax.php?action=login, thus gaining access to the website administrative panel.
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
| Link | Tags |
|---|---|
| https://dl.packetstormsecurity.net/2010-exploits/simplecollegewebsite10-sqlexec.txt | third party advisory exploit |
| https://www.sourcecodester.com/php/14548/simple-college-website-using-htmlphpmysqli-source-code.html | product third party advisory |
| https://www.sourcecodester.com/sites/default/files/download/oretnom23/simple-college-website.zip | third party advisory |
| https://github.com/yunaranyancat/poc-dump/blob/main/simplecollegewebsite/sqli_rce.py | third party advisory exploit |