SourceCodester Garage Management System editbrand.php sql injection
Description
SQL injection in SourceCodester Garage Management System 1.0's /editbrand.php via id parameter allows remote unauthenticated attackers to execute arbitrary SQL commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
SQL injection in SourceCodester Garage Management System 1.0's /editbrand.php via id parameter allows remote unauthenticated attackers to execute arbitrary SQL commands.
Vulnerability
A critical SQL injection vulnerability exists in SourceCodester Garage Management System version 1.0 in the /editbrand.php file. The id parameter is not sanitized, allowing an attacker to inject SQL commands. The issue is classified as critical and has been publicly disclosed [1].
Exploitation
An attacker can exploit this vulnerability remotely without authentication by sending a crafted HTTP GET request to /editbrand.php?id=. The provided proof-of-concept uses a simple request like http://[ip:port]/editbrand.php?id=1 and demonstrates that sqlmap can be used to automate exploitation [1].
Impact
Successful exploitation allows an attacker to execute arbitrary SQL statements on the backend database, potentially leading to information disclosure, data manipulation, or even full database compromise. The vulnerability is remotely exploitable with no special privileges required [1].
Mitigation
As of the publication date (2022-07-19), no official patch has been released by SourceCodester. Users should apply input validation and parameterized queries to mitigate the risk. The software is available on SourceCodester's website [1].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: = 1.0
- Range: 1.0
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"Missing input sanitization on the `id` parameter in `/editbrand.php` allows direct SQL query manipulation."
Attack vector
An attacker sends a crafted HTTP GET request to `/editbrand.php` with a malicious `id` parameter value [ref_id=1]. The parameter is directly concatenated into a SQL query without sanitization, enabling time-based blind SQL injection (e.g., using `SLEEP()` payloads) [ref_id=1]. The attack is remotely exploitable with no authentication required.
Affected code
The vulnerable file is `/editbrand.php` in SourceCodester Garage Management System 1.0. The `id` parameter passed via GET request is processed without sanitization, allowing SQL injection.
What the fix does
No patch is provided in the bundle. The advisory does not include remediation guidance. To fix this vulnerability, the application should use prepared statements or parameterized queries when handling the `id` parameter in `/editbrand.php`, and validate that the input is an expected type (e.g., integer).
Preconditions
- networkThe target must be running SourceCodester Garage Management System 1.0 with the /editbrand.php endpoint accessible
- authNo authentication is required; the endpoint is publicly reachable
Reproduction
Send a GET request to `http://[target]/editbrand.php?id=1` with a SQL injection payload in the `id` parameter. For example, appending `' AND (SELECT 6427 FROM (SELECT(SLEEP(5)))LwLu) AND 'hsvT'='hsvT` will cause a 5-second delay if the injection succeeds [ref_id=1].
Generated on May 26, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
2- github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Garage-Management-System.mdmitrex_refsource_MISC
- vuldb.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.