F14G2

**Name of the Vulnerable Software and Affected Versions** itsourcecode Human Resource Management System version 1.0 **Description** A flaw exists in itsourcecode Human Resource Management System 1.0 that allows for SQL injection. The issue stems from improper handling of the `eventSubject` argument during the processing of the file `/src/store/EventStore.php`. This manipulation can be initiated remotely. The exploit for this issue is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Human Resource Management System version 1.0 **Description** A security issue exists in itsourcecode Human Resource Management System 1.0. Manipulation of the `noticeDesc` argument within an unknown function of the file `/src/store/NoticeStore.php` can lead to SQL injection. This attack can be launched remotely. The exploit has been publicly disclosed. **Recommendations** Address the SQL injection issue by sanitizing or validating the `noticeDesc` argument before using it in database queries within the `/src/store/NoticeStore.php` file.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Web-Based Internet Laboratory Management System version 1.0 **Description** A flaw exists in itsourcecode Web-Based Internet Laboratory Management System 1.0 that allows for SQL injection. The issue is located in the file `/enrollment/controller.php` within an unknown function. This allows for remote manipulation. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Web-Based Internet Laboratory Management System version 1.0 **Description** A flaw exists in itsourcecode Web-Based Internet Laboratory Management System 1.0. The issue impacts an unknown function within the `/user/controller.php` file and allows for SQL injection. This can be exploited remotely. The exploit has been published. The vulnerable parameter is not specified. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** 1000projects Design & Development of Student Database Management System version 1.0 **Description** A flaw exists in 1000projects Design & Development of Student Database Management System version 1.0 that allows for remote SQL injection. The issue is located in the file `/TeacherLogin/Academics/SubjectDetails.php` and involves manipulation of the `SubCode` argument within an unknown function. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Web-Based Internet Laboratory Management System version 1.0 **Description** A SQL injection issue exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0. The issue is located in an unknown functionality of the file `/subject/controller.php`. This allows for remote attacks. The exploit has been made public. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Web-Based Internet Laboratory Management System version 1.0 **Description** A flaw exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0 that allows for SQL injection. The issue is located in an unknown function within the `/settings/controller.php` file. This allows for remote attacks. The details of the exploit have been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Web-Based Internet Laboratory Management System version 1.0 **Description** A security issue exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0. The issue involves a SQL injection impacting an unknown function within the `/course/controller.php` file. This manipulation can be executed remotely. The details of the exploit have been publicly disclosed. The vulnerable parameter is not specified. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.