Csz

**Name of the Vulnerable Software and Affected Versions** Barangay Management System version 1.0 **Description** The Barangay Management System contains a SQL injection issue via the `hidden id` parameter at the "/blotter/blotter.php" API endpoint. **Recommendations** For Barangay Management System version 1.0, consider restricting access to the "/blotter/blotter.php" endpoint or avoiding the use of the `hidden id` parameter until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.