Zhi C

**Name of the Vulnerable Software and Affected Versions** itsourcecode E-Logbook with Health Monitoring System for COVID-19 version 1.0 **Description** A security issue exists in itsourcecode E-Logbook with Health Monitoring System for COVID-19 version 1.0. The issue involves SQL injection within the `/check profile old.php` file. Manipulation of the `profile id` argument can lead to SQL injection. Remote exploitation is possible, and the exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.