Llz

**Name of the Vulnerable Software and Affected Versions** CodeZips Gym Management System version 1.0 **Description** The issue concerns SQL injection in the `name` parameter within the "/dashboard/admin/deleteroutine.php" API endpoint. This allows for potential exploitation. **Recommendations** For CodeZips Gym Management System version 1.0, consider restricting access to the "/dashboard/admin/deleteroutine.php" endpoint until a patch is available, and avoid using the `name` parameter in this endpoint to minimize the risk of exploitation.