Riovulntest

**Name of the Vulnerable Software and Affected Versions** code-projects Web-Based Inventory and POS System version 1.0 **Description** A flaw exists in code-projects Web-Based Inventory and POS System 1.0. The issue is related to the manipulation of the `emailid` argument in the /login.php file, which can lead to SQL injection. This can be exploited remotely. The details of the exploit have been publicly disclosed. **Recommendations** Apply any available updates or patches for code-projects Web-Based Inventory and POS System version 1.0. As a temporary workaround, restrict access to the /login.php file. Sanitize the `emailid` input to prevent SQL injection attacks.