Onechicken

**Name of the Vulnerable Software and Affected Versions** itsourcecode Online Frozen Foods Ordering System version 1.0 **Description** A SQL injection issue exists due to manipulation of the `product name` argument within an unknown functionality of the `/admin/admin edit menu action.php` file. This allows for remote attacks. An exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Online Frozen Foods Ordering System version 1.0 **Description** A security flaw exists in itsourcecode Online Frozen Foods Ordering System version 1.0. The issue involves a SQL injection vulnerability within an unknown functionality of the `/admin/admin edit menu.php` file. Manipulation of the `product name` argument can trigger the injection. This attack can be initiated remotely. The exploit for this issue has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode Online Doctor Appointment System version 1.0 **Description** A flaw exists in the processing of the `/admin/appointment action.php` file. Manipulation of the `appointment id` argument can lead to SQL injection. This issue is remotely exploitable and an exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** itsourcecode University Management System version 1.0 **Description** A cross site scripting issue exists in itsourcecode University Management System 1.0. The issue stems from manipulating the `st name` argument within an unknown function in the `/admin single student update.PHP` file. This manipulation can be initiated remotely. An exploit for this issue has been published. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.