Sqli

**Name of the Vulnerable Software and Affected Versions** SEMCMS version 5.0 **Description** A security issue exists in SEMCMS 5.0 related to SQL injection. The issue is located in the `/SEMCMS Info.php` file, where manipulation of the `searchml` argument can lead to a successful attack. This attack can be carried out remotely. The exploit for this issue has been publicly disclosed. The vendor was notified but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Online Appointment Booking System version 1.0 **Description** A security flaw exists in code-projects Online Appointment Booking System 1.0. The issue involves SQL injection resulting from manipulation of the `clinic` argument within the /admin/deletemanagerclinic.php file. This can be initiated remotely. The exploit has been publicly released. The vulnerable function is unknown. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.