Dan_Z

**Name of the Vulnerable Software and Affected Versions** CodeAstro Gym Management System version 1.0 **Description** A flaw exists in CodeAstro Gym Management System 1.0 that could allow for SQL injection. This issue affects the `/admin/view-progress-report.php` file. Manipulation of the `ID` argument can lead to a successful attack, which can be launched remotely. The exploit for this issue has been publicly disclosed. **Recommendations** Apply a fix or patch for CodeAstro Gym Management System version 1.0 to address the SQL injection vulnerability in the `/admin/view-progress-report.php` file.