R4Hn1

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Simple Client Management System version 1.0 **Description** A SQL Injection issue exists via the `id` parameter in "view-service.php". This allows for potential exploitation. **Recommendations** For Sourcecodester Simple Client Management System version 1.0, avoid using the `id` parameter in the "view-service.php" file until a fix is available. As a temporary workaround, consider restricting access to the "view-service.php" file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Simple Client Management System version 1.0 **Description** A SQL Injection issue exists via the `username` field in the "login.php" file. This allows for potential exploitation. **Recommendations** For Sourcecodester Simple Client Management System version 1.0, consider restricting access to the "login.php" file until a patch is available, and avoid using the `username` field in the login functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.