2924909538

**Name of the Vulnerable Software and Affected Versions** itsourcecode College Management System version 1.0 **Description** A flaw exists in itsourcecode College Management System version 1.0 that allows for remote SQL injection. The issue is located in the file `/admin/time-table.php` within an unknown function. Manipulation of the `course code` parameter can trigger the injection. The exploit is publicly available. **Recommendations** Apply a fix to the vulnerable file `/admin/time-table.php` to address the SQL injection issue related to the `course code` parameter.