Ekkojob

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Management System version 1.0 **Description** A security issue exists in itsourcecode Student Management System 1.0. The issue affects code within the `/edit user.php` file. Manipulation of the `fname` argument can lead to a SQL injection. The attack can be carried out remotely. **Recommendations** For itsourcecode Student Management System version 1.0, address the SQL injection issue by sanitizing or validating the `fname` parameter in the `/edit user.php` file.