Huat

**Name of the Vulnerable Software and Affected Versions** code-projects Online Reviewer System version 1.0 **Description** A security issue exists in code-projects Online Reviewer System 1.0 related to SQL injection. The issue is located in the Login component, specifically within the file `/login/index.php`. Manipulation of the `username`/`password` argument can lead to a successful SQL injection attack. The attack can be carried out remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Simple Food Ordering System version 1.0 **Description** A flaw exists in Simple Food Ordering System 1.0 that allows for remote SQL injection through manipulation of the `ID` argument within the `/saveorder.php` file. The exploit for this issue has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.