Chenxiaodong

**Name of the Vulnerable Software and Affected Versions** code-projects Refugee Food Management System version 1.0 **Description** A security flaw exists in code-projects Refugee Food Management System 1.0. The issue is a SQL injection impacting an unknown function within the `/home/pagenateRefugeesList.php` file. Manipulation of the `rfid` argument can lead to SQL injection, allowing for remote exploitation. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Refugee Food Management System version 1.0 **Description** A flaw exists in Refugee Food Management System 1.0 that allows for SQL injection. This occurs through manipulation of the `refNo` argument in a remote request to the `/home/served.php` file. The issue affects an unknown function. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Refugee Food Management System version 1.0 **Description** A security issue exists in code-projects Refugee Food Management System 1.0. The manipulation of the `tfid` argument in the file '/home/viewtakenfd.php' leads to a SQL injection. The attack can be carried out remotely. The exploit has been disclosed publicly. The vulnerability impacts an unknown function within the specified file. **Recommendations** Refugee Food Management System version 1.0: Avoid using the `tfid` parameter in the '/home/viewtakenfd.php' file until the issue is resolved. As a temporary workaround, consider restricting access to the '/home/viewtakenfd.php' file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** code-projects Refugee Food Management System version 1.0 **Description** A flaw exists in code-projects Refugee Food Management System 1.0 that allows for SQL injection. The issue is located in an unknown function within the `/home/refugeesreport2.php` file. Manipulation of the `a` argument can trigger the injection. The attack can be carried out remotely and an exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Refugee Food Management System version 1.0 **Description** A flaw exists in code-projects Refugee Food Management System 1.0, specifically within an unknown functionality of the `/home/refugeesreport.php` file. Manipulation of the `a` argument can lead to SQL injection. The attack can be initiated remotely. An exploit has been published and may be used. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Refugee Food Management System version 1.0 **Description** A flaw exists in Refugee Food Management System version 1.0 that allows for remote SQL injection. The issue is located in the file `/home/addusers.php`. Manipulation of the `a` argument can lead to a successful attack. The exploit details have been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.