Gemileo777

**Name of the Vulnerable Software and Affected Versions:** Modern Bag version 1.0 **Description:** A critical issue exists in Modern Bag 1.0, specifically within the `/admin/category-list.php` file. Manipulation of the `idCate` argument can lead to a SQL injection. This allows for remote attacks. The exploit details have been publicly disclosed. **Recommendations:** Modern Bag version 1.0: Address the SQL injection issue by sanitizing or validating the `idCate` parameter before using it in database queries. Modern Bag version 1.0: Review and secure the code within the `/admin/category-list.php` file to prevent further injection attempts.

Name of the Vulnerable Software and Affected Versions: code-projects Jonnys Liquor version 1.0 Description: A critical issue exists in an unknown functionality of the file `/browse.php`. Manipulation of the `Search` argument results in SQL injection. The attack can be launched remotely. The exploit has been disclosed to the public. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Code-projects Library System version 1.0 Description: A critical issue has been found in the processing of the file /notapprove.php, where the manipulation of the `ID` argument leads to SQL injection. This issue can be exploited remotely. Recommendations: For Code-projects Library System version 1.0, as a temporary workaround, consider restricting access to the /notapprove.php file until a patch is available. Avoid using the `ID` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.