Er1Czz

**Name of the Vulnerable Software and Affected Versions** kidaze CourseSelectionSystem version 1.0/5.php **Description** A security flaw exists in kidaze CourseSelectionSystem 1.0/5.php. The issue involves a SQL injection that can be triggered remotely by manipulating the `csslc` argument of an unknown function within the /Profilers/PriProfile/COUNT3s5.php file. The exploit for this issue has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.