Yilimi

**Name of the Vulnerable Software and Affected Versions** code-projects Online Medicine Guide version 1.0 **Description** A critical issue exists in code-projects Online Medicine Guide 1.0 related to an unknown functionality within the `/login.php` file. The manipulation of the `uname` argument can lead to SQL injection. This issue can be exploited remotely, and the exploit has been publicly disclosed. **Recommendations** As a temporary workaround, consider restricting access to the `/login.php` file until a fix is available. Sanitize the `uname` input parameter to prevent SQL injection attacks.