Mr-Xmen786

**Name of the Vulnerable Software and Affected Versions** CloudClassroom-PHP Project version 1.0 **Description** The CloudClassroom-PHP Project is susceptible to a SQL injection issue through the `viewid` parameter. **Recommendations** As a temporary workaround, consider restricting access to the `viewid` parameter until a fix is available.

**Name of the Vulnerable Software and Affected Versions** minCal version 1.0.0 **Description** The issue allows a remote attacker to execute arbitrary code via a crafted script to the `customer data` parameter. This enables the attacker to potentially gain control over the system, leading to unauthorized access and data manipulation. **Recommendations** For minCal version 1.0.0, as a temporary workaround, consider restricting access to the `customer data` parameter until a patch is available. Avoid using the `customer data` parameter in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.