CVE-2021-44092

Vulnerability

An SQL Injection vulnerability exists in the username parameter of the administer login form in code-projects Pharmacy Management version 1.0 [1]. The application fails to sanitize user input before using it in a SQL query, allowing an attacker to inject arbitrary SQL commands.

Exploitation

An attacker with network access to the login page can exploit this vulnerability by submitting a crafted string containing SQL metacharacters in the username field. No prior authentication is required. For example, entering ' OR '1'='1 as the username may bypass authentication and log in as an administrator.

Impact

Successful exploitation allows an attacker to bypass authentication, retrieve sensitive data from the database (e.g., patient records, prescriptions, and user credentials), and potentially modify or delete data. This could lead to unauthorized access to the entire application.

Mitigation

No official patch has been released by the vendor for Pharmacy Management 1.0 as of the publication date. The vulnerability was reported to the vendor via the repository [1]. As a workaround, input validation and parameterized queries should be implemented. Until a fix is available, administrators should restrict network access to the login page and monitor for suspicious activity.