Junfeigu

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical issue has been found in the code-projects Real Estate Property Management System. The problem affects an unknown functionality of the file /Admin/CustomerReport.php. Manipulation of the `city` argument leads to SQL injection. The attack can be launched remotely. Recommendations: For code-projects Real Estate Property Management System version 1.0, as a temporary workaround, consider restricting access to the /Admin/CustomerReport.php file until a patch is available. Avoid using the `city` argument in the affected functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** code-projects Job Recruitment version 1.0 **Description** A problem has been found in the code that affects the / parse/load user-profile.php file, leading to cross site scripting. The attack can be initiated remotely and multiple parameters might be affected. **Recommendations** For code-projects Job Recruitment version 1.0, consider restricting access to the / parse/load user-profile.php file until a patch is available. As a temporary workaround, avoid using parameters that may be affected by the cross site scripting issue in the affected file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.