Wu_1007

**Name of the Vulnerable Software and Affected Versions** itsourcecode Student Management System version 1.0 **Description** A security flaw exists in itsourcecode Student Management System 1.0. The issue involves a SQL injection affecting an unknown function within the file `/ramonsys/billing/index.php`. Manipulation of the `ID` argument can lead to SQL injection. Remote exploitation is possible, and the exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.