Liuann

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A problematic issue has been found in the software, affecting the file edit.php. The manipulation of the `id` argument leads to cross-site scripting. The attack can be initiated remotely. The issue has been disclosed to the public. **Recommendations** For SourceCodester Online Courseware version 1.0, consider disabling the `id` argument in the edit.php file as a temporary workaround until a patch is available. Restrict access to the edit.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A problematic issue was found in the file addq.php, where the manipulation of the `id` argument leads to cross-site scripting. This issue can be initiated remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the addq.php file or disabling the manipulation of the `id` argument until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A problematic issue has been found in the file editt.php, where the manipulation of the `id` argument leads to cross-site scripting. The attack can be launched remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the editt.php file until a patch is available. As a temporary workaround, avoid using the `id` argument in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue was found in the admin/editt.php file, where the manipulation of the `id` argument leads to SQL injection. The attack can be initiated remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the admin/editt.php file until a patch is available. As a temporary workaround, avoid using the `id` argument in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue was found in the admin/activateall.php file, where the manipulation of the `selector` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the admin/activateall.php file until a patch is available. As a temporary workaround, avoid using the `selector` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue has been found in the software. The problem is related to an unknown function in the file admin/listscore.php, where the manipulation of the `title` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the admin/listscore.php file until a patch is available. As a temporary workaround, avoid using the `title` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue affects the processing of the file admin/activateteach.php, where the manipulation of the `selector` argument leads to SQL injection. The attack can be initiated remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, as a temporary workaround, consider restricting access to the admin/activateteach.php file until a patch is available. Avoid using the `selector` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue has been identified, affecting the file admin/activatestud.php. The manipulation of the `selector` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the admin/activatestud.php file until a patch is available. As a temporary workaround, avoid using the `selector` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue has been found in the software, affecting the file admin/deactivatestud.php. The manipulation of the `selector` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, consider restricting access to the admin/deactivatestud.php file until a patch is available. As a temporary workaround, avoid using the `selector` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue was found in the software, affecting some unknown functionality of the file admin/saveedit.php. The manipulation of the `id` argument leads to sql injection. The attack can be launched remotely. **Recommendations** For version 1.0, consider restricting access to the admin/saveedit.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the `id` argument in the affected functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue has been found in the software, affecting an unknown functionality of the file admin/edit.php. The manipulation of the `id` argument leads to SQL injection. The attack can be launched remotely. **Recommendations** For version 1.0, consider restricting access to the admin/edit.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the `id` argument in the affected file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue was found in the software, affecting an unknown function of the file admin/deactivateteach.php. The manipulation of the `selector` argument leads to SQL injection. It is possible to launch the attack remotely. The issue has been publicly disclosed. **Recommendations** For SourceCodester Online Courseware version 1.0, consider disabling access to the admin/deactivateteach.php file until a patch is available. Restrict the use of the `selector` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Courseware version 1.0 **Description** A critical issue has been found in the processing of the file admin/saveeditt.php, where the manipulation of the `contact` argument leads to sql injection. The attack can be initiated remotely. **Recommendations** For SourceCodester Online Courseware version 1.0, as a temporary workaround, consider restricting access to the admin/saveeditt.php file until a patch is available. Avoid using the `contact` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Human Resource Information System version 1.0 **Description** A critical issue has been found in the initialize/login process.php file, where the manipulation of the `hr email`/`hr password` argument leads to sql injection. The attack can be initiated remotely. **Recommendations** For SourceCodester Human Resource Information System version 1.0, consider restricting access to the initialize/login process.php file until a patch is available. As a temporary workaround, avoid using the `hr email` and `hr password` arguments in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Library System version 1.0 **Description** A critical issue has been found in the SourceCodester Online Library System. This issue affects an unknown part of the file admin/borrowed/index.php. The manipulation of the `BookPublisher` and `BookTitle` arguments leads to SQL injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For SourceCodester Online Library System version 1.0, consider disabling access to the admin/borrowed/index.php file until a patch is available. Restrict the use of the `BookPublisher` and `BookTitle` arguments in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Library System version 1.0 **Description** A vulnerability was found in the SourceCodester Online Library System, affecting unknown code of the file admin/books/index.php. The manipulation of the `id` argument leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For SourceCodester Online Library System version 1.0, consider restricting access to the `admin/books/index.php` file until a patch is available. As a temporary workaround, avoid using the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Library System version 1.0 **Description** A vulnerability was found in the processing of the file admin/users/controller.php. The manipulation of the `user name` argument leads to cross-site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For SourceCodester Online Library System version 1.0, consider disabling the `user name` argument in the admin/users/controller.php file as a temporary workaround until a patch is available. Restrict access to the admin/users/controller.php file to minimize the risk of exploitation. Avoid using the `user name` argument in the affected processing until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Human Resource Information System version 1.0 **Description** A problem was found in the processing of the file Superadmin Dashboard/process/addcorporate process.php. The manipulation of the `corporate name` argument leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For SourceCodester Human Resource Information System version 1.0, consider restricting access to the Superadmin Dashboard/process/addcorporate process.php file until a fix is available. As a temporary workaround, avoid using the `corporate name` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Human Resource Information System version 1.0 **Description** A problematic issue has been found in the software, affecting an unknown function of the file Superadmin Dashboard/process/addbranches process.php. The manipulation of the `branches name` argument leads to cross-site scripting. This issue can be exploited remotely. **Recommendations** For SourceCodester Human Resource Information System version 1.0, as a temporary workaround, consider restricting access to the `addbranches process.php` file or disabling the unknown function that handles the `branches name` argument until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Library System version 1.0 **Description** A critical issue was found in the SourceCodester Online Library System, affecting an unknown function of the file admin/books/index.php. The manipulation of the `id` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For SourceCodester Online Library System version 1.0, as a temporary workaround, consider restricting access to the `admin/books/index.php` file until a patch is available. Avoid using the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.