This is a summary of the AI-generated 10-question deep analysis. The full version (longer answers, follow-up Q&A, related CVEs) requires login. Read the full analysis β
Q1What is this vulnerability? (Essence + Consequences)
π¨ **Essence**: SQL Injection in **Projectworlds Online Book Store** (PHP). <br>π₯ **Consequences**: Attackers can **dump the entire database** running the web app. Critical data loss risk!
Q2Root Cause? (CWE/Flaw)
π‘οΈ **Root Cause**: **SQL Injection** flaw. Specifically in the `pubid` parameter within `bookPerPub.php`. <br>π **Type**: Time-based blind, Boolean-based blind, and OR error-based injection.
Q3Who is affected? (Versions/Components)
π₯ **Affected**: **Projectworlds Online Book Store Project In Php** version **1.0**. <br>π¦ **Vendor**: Projectworlds (Austria). <br>β οΈ **Note**: Only v1.0 is confirmed vulnerable.
Q4What can hackers do? (Privileges/Data)
π΅οΈ **Attacker Capabilities**: <br>1οΈβ£ **Dump Database**: Extract all tables/data. <br>2οΈβ£ **Privileges**: Depends on DB user rights, but full data exposure is guaranteed.β¦
π **Exploitation Threshold**: **LOW**. <br>β **Auth**: No authentication required mentioned. <br>β **Config**: Direct parameter manipulation in `bookPerPub.php`. <br>π― **Ease**: Simple parameter injection via `pubid`.
Q6Is there a public Exp? (PoC/Wild Exploitation)
π£ **Public Exploit**: **YES**. <br>π **Source**: Exploit-DB ID **49314**. <br>π€ **Automation**: Nuclei templates available for scanning. <br>β‘ **Status**: Wildly exploitable via standard SQLi techniques.
Q7How to self-check? (Features/Scanning)
π **Self-Check**: <br>1οΈβ£ Scan for `bookPerPub.php` with `pubid` parameter. <br>2οΈβ£ Use **Nuclei** templates (CVE-2020-36112.yaml). <br>3οΈβ£ Test for **Time-based** or **Boolean-based** blind responses.β¦
π₯ **Urgency**: **HIGH**. <br>π **Priority**: **P1**. <br>π‘ **Reason**: Full database dump is possible with low effort. No patch available. Immediate mitigation required to prevent data breach!