Beamyou

**Name of the Vulnerable Software and Affected Versions** code-projects COVID Tracking System version 1.0 **Description** A flaw exists in the processing of the `/login.php` file within the software. Manipulation of the `code` argument can lead to SQL injection. This issue is remotely exploitable and an exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Courier Management System version 1.0 **Description** A flaw exists in code-projects Courier Management System 1.0. The issue is related to the manipulation of the `OfficeName` argument in the `/add-office.php` file, which can lead to SQL injection. This can be initiated remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.