Xupxload

**Name of the Vulnerable Software and Affected Versions** code-projects Employee Profile Management System version 1.0 **Description** A flaw exists in code-projects Employee Profile Management System version 1.0, specifically within an unknown function of the `/print personnel report.php` file. Manipulation of the `per id` argument can lead to SQL injection. This issue can be exploited remotely. The exploit has been published. **Recommendations** Apply any available updates or patches for code-projects Employee Profile Management System version 1.0. As a temporary workaround, consider restricting access to the `/print personnel report.php` file. Sanitize the `per id` parameter to prevent SQL injection attacks.