Useraaa

**Name of the Vulnerable Software and Affected Versions** SourceCodester Class and Exam Timetabling System version 1.0 **Description** An issue exists in the `/index2.php` file where the manipulation of the `Password` argument allows for remote SQL injection. SQL injection is a technique where an attacker inserts malicious SQL statements into a query, potentially allowing them to manipulate the database. **Recommendations** Update SourceCodester Class and Exam Timetabling System version 1.0 to a version that contains a fix. As a temporary workaround, restrict access to the `/index2.php` file or avoid using the `Password` argument until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Class and Exam Timetabling System version 1.0 **Description** An issue exists in the `/index1.php` file where manipulation of the `Password` argument allows for SQL injection, a technique used to interfere with the queries that an application makes to its database. This attack can be initiated remotely. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.