Niuzzz

**Name of the Vulnerable Software and Affected Versions** code-projects Simple Laundry System version 1.0 **Description** A security flaw exists in code-projects Simple Laundry System 1.0. The issue affects an unknown function within the file `/modstaffinfo.php` of the Parameter Handler component. Manipulation of the `userid` argument can lead to SQL injection. The attack can be performed remotely. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Exam Form Submission version 1.0 **Description** A cross-site scripting issue exists due to the manipulation of the `sname` argument in the file '/admin/update s7.php'. The issue impacts an unknown function. The exploit has been publicly released and could be used for remote attacks. **Recommendations** Apply updates to address the issue in version 1.0. As a temporary workaround, restrict access to the file `/admin/update s7.php`. Avoid using the `sname` parameter in the affected file `/admin/update s7.php` until the issue is resolved.