Lanxiy7Th

**Name of the Vulnerable Software and Affected Versions** Online-Bookstore-Project-In-PHP version 1.0 **Description** The issue allows a local attacker to execute arbitrary code via the admin delete.php component. This is due to a SQL Injection vulnerability. **Recommendations** For Online-Bookstore-Project-In-PHP version 1.0, consider disabling the admin delete.php component until a patch is available to prevent exploitation. Restrict access to this component to minimize the risk of arbitrary code execution.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue was found in the itsourcecode Online Student Enrollment System. The problem is related to an unknown function in the file listofstudent.php, where the manipulation of the `lname` argument leads to SQL injection. This issue can be exploited remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the listofstudent.php file until a fix is available. As a temporary workaround, avoid using the `lname` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue has been found in the itsourcecode Online Student Enrollment System, affecting an unknown functionality of the file listofsubject.php. The manipulation of the `subjcode` argument leads to SQL injection. The attack can be launched remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the listofsubject.php file until a patch is available. As a temporary workaround, avoid using the `subjcode` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue was found in the itsourcecode Online Student Enrollment System, affecting some unknown functionality of the file editSubject.php. The manipulation of the `id` argument leads to SQL injection. The attack can be launched remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the editSubject.php file until a patch is available. As a temporary workaround, avoid using the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue has been found in the itsourcecode Online Student Enrollment System, affecting the file listofcourse.php. The `idno` argument is vulnerable to SQL injection, allowing remote attacks. The exploit has been publicly disclosed. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the listofcourse.php file and avoid using the `idno` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue has been identified, affecting the file newDept.php. The manipulation of the `deptname` argument leads to SQL injection. This issue can be exploited remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the newDept.php file until a patch is available. As a temporary workaround, avoid using the `deptname` argument in the affected file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue affects the processing of the file listofinstructor.php, where the manipulation of the `FullName` argument leads to sql injection. The attack can be initiated remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the listofinstructor.php file until a patch is available. As a temporary workaround, avoid using the `FullName` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue has been found in the itsourcecode Online Student Enrollment System, affecting an unknown function of the file newfaculty.php. The manipulation of the `name` argument leads to SQL injection. This issue can be exploited remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the newfaculty.php file until a patch is available. As a temporary workaround, avoid using the `name` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Student Enrollment System version 1.0 Description: A critical issue was found in the itsourcecode Online Student Enrollment System, affecting an unknown functionality of the file instructorSubjects.php. The manipulation of the `instructorId` argument leads to SQL injection. The attack can be launched remotely. Recommendations: For itsourcecode Online Student Enrollment System version 1.0, consider restricting access to the instructorSubjects.php file until a patch is available. As a temporary workaround, avoid using the `instructorId` argument in the affected functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Information Management System version 1.0 **Description** A critical issue was found in the itsourcecode Student Information Management System, affecting an unknown functionality of the file view.php. The manipulation of the `studentId` argument leads to sql injection. The attack can be launched remotely. **Recommendations** For itsourcecode Student Information Management System version 1.0, consider restricting access to the view.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the `studentId` argument in the affected functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.