Yuancoffee

**Name of the Vulnerable Software and Affected Versions** Simple Attendance Record System version 2.0 **Description** A flaw exists in Simple Attendance Record System 2.0 where manipulation of the `student` argument in the `/check.php` file can lead to SQL injection. This issue affects an unknown function within the file. Remote exploitation is possible, and details about the exploit have been publicly released. **Recommendations** Apply a fix to address the SQL injection issue in the `/check.php` file.

**Name of the Vulnerable Software and Affected Versions** code-projects Question Paper Generator version 1.0 **Description** A flaw exists in code-projects Question Paper Generator that allows for SQL injection. The issue is located in the `/selectquestionuser.php` file, specifically through manipulation of the `subid` argument. Remote exploitation is possible. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.