Wangshuai

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Simple Library Management System version 1.0 **Description** A SQL injection issue was discovered due to insufficient validation of user input for the `username` parameter in the "ajax.php" file. This allows attackers to inject malicious SQL queries. **Recommendations** For Sourcecodester Simple Library Management System version 1.0, consider validating and sanitizing the `username` parameter to prevent malicious SQL injections. As a temporary workaround, restrict access to the "ajax.php" file until a proper fix is applied.