Lingzezzz

**Name of the Vulnerable Software and Affected Versions** SourceCodester Pharmacy Sales and Inventory System version 1.0 **Description** A remote SQL injection issue exists due to improper processing of the '/ajax.php?action=chk prod availability' endpoint. Manipulation of the `ID` argument allows for this attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions SourceCodester Pharmacy Sales and Inventory System version 1.0 Description A SQL injection issue exists in the '/ajax.php?action=delete sales' endpoint. Manipulating the `ID` argument allows a remote attacker to execute an attack. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions SourceCodester Pharmacy Sales and Inventory System version 1.0 Description A SQL injection issue exists in the '/ajax.php?action=login' endpoint. Manipulation of the `Username` variable allows for remote attacks. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.