Login Sign Up

CVE-2024-30980

9.8 CRITICAL
SQL Injection

📋 TL;DR

This SQL injection vulnerability in phpgurukul Cyber Cafe Management System allows attackers to execute arbitrary SQL commands via the Computer Location parameter. Attackers can potentially access, modify, or delete database contents, including sensitive user information. All installations of version 1.0 are affected.

💻 Affected Systems

Products:
  • phpgurukul Cyber Cafe Management System
Versions: 1.0
Operating Systems: Any OS running PHP and MySQL
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the manage-computer.php page specifically. Requires PHP and MySQL backend.

📦 What is this software?

Cyber Cafe Management System by Phpgurukul

View all CVEs affecting Cyber Cafe Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, system takeover, and potential lateral movement to other systems.

🟠

Likely Case

Data exfiltration of user credentials, personal information, and financial data stored in the database.

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to non-critical data.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

SQL injection via GET/POST parameter requires minimal technical skill. Public exploit details available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None known

Restart Required: No

Instructions:

No official patch available. Implement input validation and parameterized queries in manage-computer.php.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add server-side validation to sanitize the Computer Location parameter before processing.

Modify manage-computer.php to use prepared statements with parameterized queries

Web Application Firewall (WAF)

all

Deploy WAF rules to block SQL injection patterns in requests.

Add WAF rule: Detect and block SQL keywords in Computer Location parameter

🧯 If You Can't Patch

  • Restrict network access to the application to trusted IPs only
  • Implement database user with minimal privileges (read-only if possible)

🔍 How to Verify

Check if Vulnerable:

Test the Computer Location parameter in manage-computer.php with SQL injection payloads like ' OR '1'='1

Check Version:

Check application version in admin panel or source code comments

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and return error messages

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in application logs
  • Multiple failed login attempts from single IP
  • Database queries with unusual patterns

Network Indicators:

  • HTTP requests containing SQL keywords to manage-computer.php
  • Unusual database connection patterns

SIEM Query:

source="web_logs" AND uri="/manage-computer.php" AND (request CONTAINS "UNION" OR request CONTAINS "SELECT" OR request CONTAINS "OR '1'='1'")

📊 Metadata

CVE ID: CVE-2024-30980
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: April 17, 2024
Last Updated: April 7, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-30980, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)