Vulnerability Type: SQL injection (SQLi) Affected Component: Online Magazine Management System Affected File: categories.php Vulnerable Code Snippet: Exploitation Technique: SQL Blind Injection Vulnerability Details: - Parameter is not properly sanitized and directly used in SQL query - SQL injection can manipulate the query logic - Can be exploited to retrieve data, perform actions, etc. Proof of Concept (PoC) Request: Verification of Vulnerability: - Comparison of response times in manipulated request vs normal request shows delay - Confirms successful SQL injection via sleep delay (time-based blind injection) --- This markdown captures key details about the SQL injection vulnerability, including the affected file, the exact vulnerable code, the exploitation technique used, the proof of concept request, and confirmation of the injection via response time differences.