Login Sign Up

CVE-2023-37627

9.8 CRITICAL
SQL Injection Authentication Bypass

📋 TL;DR

CVE-2023-37627 is a critical SQL injection vulnerability in Code-projects Online Restaurant Management System 1.0 that allows attackers to bypass authentication and manipulate restaurant data. This affects all installations of version 1.0 of this PHP-based web application. Attackers can access admin functions without credentials and perform unauthorized operations.

💻 Affected Systems

Products:
  • Code-projects Online Restaurant Management System
Versions: 1.0
Operating Systems: Any OS running PHP web server
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all default installations of version 1.0. The vulnerability exists in the authentication mechanism.

📦 What is this software?

Online Restaurant Management System by Code Projects

View all CVEs affecting Online Restaurant Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of restaurant management system including data theft, data manipulation, deletion of all records, and potential server takeover if database permissions allow.

🟠

Likely Case

Unauthorized access to admin panel leading to manipulation of orders, menu items, and customer data, potentially causing business disruption and data integrity issues.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries preventing SQL injection, though other vulnerabilities may still exist.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Proof of concept available in GitHub gist. SQL injection is straightforward with common tools like sqlmap.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: Not available

Restart Required: No

Instructions:

No official patch available. Replace vulnerable code with parameterized queries and implement proper input validation.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy WAF with SQL injection rules to block malicious requests

Input Validation Filter

all

Implement input validation to reject SQL special characters in authentication fields

🧯 If You Can't Patch

  • Isolate the system behind a firewall with strict access controls
  • Implement network segmentation to limit database server access

🔍 How to Verify

Check if Vulnerable:

Test authentication endpoints with SQL injection payloads like ' OR '1'='1 in username/password fields

Check Version:

Check source code files for version information or review project documentation

Verify Fix Applied:

Verify that SQL injection payloads no longer bypass authentication and return proper error handling

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed login attempts with SQL keywords
  • Successful admin logins from unusual IP addresses
  • Database error messages in web logs

Network Indicators:

  • Unusual database queries from web server
  • Authentication bypass patterns in HTTP requests

SIEM Query:

source="web_logs" AND ("' OR" OR "--" OR ";--" OR "UNION SELECT") AND (uri="*/admin*" OR uri="*/login*")

📊 Metadata

CVE ID: CVE-2023-37627
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: July 12, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-37627, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)