CVE-2024-10411 – This is a critical SQL injection vulnerability ... (How to Fix)

Q: What is the severity of CVE-2024-10411?

CVE-2024-10411 has a CVSS score of 6.3 (MEDIUM). This is a critical SQL injection vulnerability in SourceCodester Online Hotel Reservation System 1.0 that allows remote attackers to execute arbitrary SQL commands through manipulated 'id' parameters in multiple admin functions. Attackers can potentially access, modify, or delete database content including sensitive guest information and system credentials. All deployments of version 1.0 are affected.

📋 TL;DR

This is a critical SQL injection vulnerability in SourceCodester Online Hotel Reservation System 1.0 that allows remote attackers to execute arbitrary SQL commands through manipulated 'id' parameters in multiple admin functions. Attackers can potentially access, modify, or delete database content including sensitive guest information and system credentials. All deployments of version 1.0 are affected.

💻 Affected Systems

Products:

SourceCodester Online Hotel Reservation System

Versions: 1.0

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability exists in the admin interface functions, requiring admin access or path traversal to exploit.

📦 What is this software?

Online Hotel Reservation System by Janobe

View all CVEs affecting Online Hotel Reservation System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to guest data theft, reservation manipulation, administrative account takeover, and potential server compromise via SQL command execution.

🟠

Likely Case

Unauthorized access to sensitive guest information (PII), reservation data manipulation, and potential privilege escalation within the application.

🟢

If Mitigated

Limited impact with proper input validation and database permissions, potentially only allowing data viewing without modification.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit requires admin access or ability to reach admin endpoints. Public proof-of-concept available on GitHub.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.sourcecodester.com/

Restart Required: No

Instructions:

No official patch available. Consider implementing input validation and parameterized queries in /marimar/admin/mod_room/controller.php functions.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation for all 'id' parameters in affected functions to prevent SQL injection.

Modify controller.php to validate and sanitize user inputs before database queries

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns targeting the vulnerable endpoints.

Configure WAF to block requests containing SQL injection patterns to /marimar/admin/mod_room/controller.php

🧯 If You Can't Patch

Isolate the system behind a firewall with strict access controls
Implement database-level protections: use least privilege accounts, enable query logging

🔍 How to Verify

Check if Vulnerable:

Test the affected endpoints (/marimar/admin/mod_room/controller.php) with SQL injection payloads in the 'id' parameter

Check Version:

Check system version in admin panel or configuration files

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and that parameterized queries are implemented

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in database logs
Multiple failed login attempts to admin interface
Requests to controller.php with SQL keywords in parameters

Network Indicators:

HTTP requests containing SQL injection patterns to vulnerable endpoints
Unusual database connection patterns from web server

SIEM Query:

source="web_logs" AND (url="/marimar/admin/mod_room/controller.php" AND (param="id" AND value CONTAINS "' OR" OR value CONTAINS "UNION" OR value CONTAINS "SELECT"))

📊 Metadata

CVE ID: CVE-2024-10411

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-89

Published: October 27, 2024

Last Updated: October 29, 2024

🔗 References

https://github.com/K1nako0/tmp_vuln10/blob/main/README.md Broken Link
https://vuldb.com/?ctiid.281940 Permissions Required,Third Party Advisory,VDB Entry
https://vuldb.com/?id.281940 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.431586 Third Party Advisory,VDB Entry
https://www.sourcecodester.com/ Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-10411, you might also want to check these: