Qujun1

**Name of the Vulnerable Software and Affected Versions** code-projects Online Complaint Site version 1.0 **Description** A flaw exists in code-projects Online Complaint Site 1.0 that allows for remote SQL injection. The issue is located in the file `/admin/category.php` and involves manipulation of the `Category` argument. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Courier Management System version 1.0 **Description** A flaw exists in code-projects Courier Management System 1.0. This issue is related to an unknown functionality within the /add-courier.php file. Manipulation of the `Shippername` argument can lead to SQL injection. The attack can be initiated remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.