Key Information Vulnerability Overview Vulnerability Type: SQL Injection (CWE-89) Product Name: Online Notes Sharing Version: v1.0 Affected File: /login.php Discoverer: waziziz Description Critical Issue: A severe SQL injection vulnerability exists in the file. The application fails to properly sanitize user input before including it in SQL queries. Affected Endpoint: Affected Parameters: username, password Request Method: POST Proof of Concept (PoC) Testing with sqlmap: Manually crafted malicious payload for POST request: Root Cause The application constructs SQL statements by directly concatenating unvalidated user input. Impact Successful exploitation of this vulnerability allows unauthorized attackers to bypass authentication, dump the entire database, modify or delete sensitive data, and perform further attacks such as privilege escalation. Recommended Remediation Replace vulnerable queries with prepared statements. Sanitize all user inputs. Implement rate limiting to reduce brute force and SQL injection attempts. Enable a Web Application Firewall (WAF) to block suspicious input patterns.