Xv Zhihan

**Name of the Vulnerable Software and Affected Versions** code-projects Accounting System version 1.0 **Description** A security issue exists in code-projects Accounting System 1.0 related to the processing of the `/viewin costumer.php` file within the Parameter Handler component. Manipulation of the `cos id` argument can lead to SQL injection. The attack can be launched remotely, and the exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.