CVE-2024-7669 – This critical SQL injection vulnerability in So... (How to Fix)

Q: What is the severity of CVE-2024-7669?

CVE-2024-7669 has a CVSS score of 6.3 (MEDIUM). This critical SQL injection vulnerability in SourceCodester Car Driving School Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'id' parameter in the delete_enrollment function. Attackers can potentially read, modify, or delete database contents, including sensitive student and administrative data. All users running the vulnerable version are affected.

📋 TL;DR

This critical SQL injection vulnerability in SourceCodester Car Driving School Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'id' parameter in the delete_enrollment function. Attackers can potentially read, modify, or delete database contents, including sensitive student and administrative data. All users running the vulnerable version are affected.

💻 Affected Systems

Products:

SourceCodester Car Driving School Management System

Versions: 1.0

Operating Systems: Any OS running PHP with database backend

Default Config Vulnerable: ⚠️ Yes

Notes: The vulnerability exists in the default installation; no special configuration is required for exploitation.

📦 What is this software?

Car Driving School Management System by Oretnom23

View all CVEs affecting Car Driving School Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data destruction, or full system takeover via SQL injection to RCE chaining.

🟠

Likely Case

Unauthorized access to sensitive student records, enrollment data, and administrative credentials stored in the database.

🟢

If Mitigated

Limited impact if proper input validation and parameterized queries are implemented, restricting SQL execution.

🌐 Internet-Facing: HIGH - The vulnerability can be exploited remotely without authentication, making internet-facing instances particularly vulnerable.

🏢 Internal Only: MEDIUM - Internal systems are still vulnerable to insider threats or compromised internal accounts.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit details are publicly available on GitHub, making this easily exploitable by attackers with basic SQL injection knowledge.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Implement parameterized queries in Master.php delete_enrollment function and validate/sanitize all user inputs.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy a WAF with SQL injection protection rules to block malicious requests targeting the vulnerable endpoint.

Input Validation Filter

all

Implement server-side input validation to reject non-numeric values for the 'id' parameter.

🧯 If You Can't Patch

Isolate the system from internet access and restrict to internal network only.
Implement strict network segmentation and monitor all database queries from the application.

🔍 How to Verify

Check if Vulnerable:

Test the delete_enrollment endpoint with SQL injection payloads in the 'id' parameter (e.g., ' OR '1'='1).

Check Version:

Check the software version in the application's admin panel or configuration files.

Verify Fix Applied:

Verify that parameterized queries are implemented and SQL injection attempts return error messages without executing.

📡 Detection & Monitoring

Log Indicators:

Unusual SQL error messages in application logs
Multiple failed delete operations with malformed IDs
Database queries with suspicious patterns from the application

Network Indicators:

HTTP requests to Master.php with SQL keywords in parameters
Unusual database traffic patterns from the application server

SIEM Query:

source="web_logs" AND (uri="*Master.php*" AND (param="*id=*OR*" OR param="*id=*UNION*" OR param="*id=*SELECT*"))

📊 Metadata

CVE ID: CVE-2024-7669

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-89

Published: August 12, 2024

Last Updated: August 15, 2024

🔗 References

https://github.com/BFS-Lab/BFSDV/blob/main/Sourcecodester%20Online%20Catering%20Reservation%20System%20SQL%20Injection-7.md Exploit
https://vuldb.com/?ctiid.274127 Permissions Required,Third Party Advisory,VDB Entry
https://vuldb.com/?id.274127 Permissions Required,Third Party Advisory,VDB Entry
https://vuldb.com/?submit.388773 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-7669, you might also want to check these: