Nick_1321

**Name of the Vulnerable Software and Affected Versions** itsourcecode Online Frozen Foods Ordering System version 1.0 **Description** A flaw exists in the processing of the `/order online.php` file within itsourcecode Online Frozen Foods Ordering System. Manipulation of the `product name` argument can result in SQL injection. This issue is exploitable remotely, and details about the exploit are publicly available. **Recommendations** Apply any available updates or patches for itsourcecode Online Frozen Foods Ordering System version 1.0. As a temporary workaround, consider sanitizing the `product name` input to prevent SQL injection attacks. Restrict access to the `/order online.php` file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Directory Management System version 1.0 **Description** A security issue exists in PHPGurukul Directory Management System 1.0 related to the Search component. The issue involves SQL injection, potentially allowing remote attackers to compromise the system. The vulnerability is located in the `/index.php` file and involves manipulation of the `searchdata` argument within an unknown function. The exploit for this issue has been publicly disclosed. **Recommendations** Apply updates to address the vulnerability in the Search component. As a temporary workaround, restrict access to the `/index.php` file or the Search functionality until a patch is available.