CVE-2026-36943

Vulnerability

Description

Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/repairs/manage_repair.php. The id parameter in the URL is not properly sanitized, allowing an attacker to inject arbitrary SQL commands. This vulnerability is confirmed by a proof-of-concept payload that extracts database information using a UNION SELECT statement. [1]

Exploitation

Conditions

Exploitation requires an attacker to have admin-level access to the system, as the vulnerable page is located in the admin panel. The reference provides default admin credentials (admin/admin123), which can be used to authenticate and then trigger the SQL injection via a crafted GET request to /rsms/admin/?page=repairs/manage_repair&id=. The vulnerability is easily exploitable with common SQL injection techniques. [1]

Impact

Successful exploitation allows an attacker to read sensitive data from the database, such as user credentials, repair records, and other stored information. Since the injection is time-based or error-based, further attacks like data exfiltration or privilege escalation may be possible depending on the database configuration. [1]

Mitigation

As of the publication date, no official patch has been released by the vendor. Users are advised to restrict admin panel access, use strong authentication, and apply input validation or parameterized queries to mitigate the risk. [1]