Hajimi

**Name of the Vulnerable Software and Affected Versions** itsourcecode Fees Management System version 1.0 **Description** An issue exists in the `/manage student.php` file where the manipulation of the `ID` argument allows for SQL injection, which is a technique where malicious SQL statements are inserted into entry fields for execution. This allows for remote exploitation of the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Exam Form Submission version 1.0 **Description** A cross site scripting issue exists in code-projects Exam Form Submission 1.0. The issue is located in an unknown function within the `/admin/update fst.php` file. Manipulation of the `sname` argument can trigger the issue, allowing for remote attacks. The exploit has been published. **Recommendations** Apply a fix for code-projects Exam Form Submission version 1.0 to address the cross site scripting issue in the `/admin/update fst.php` file.